I filed a bug on Github about this, too. It is very dangerous to create a folder on your system that is read/write/execute all. Any attacker could run their own scripts in this folder and turn your server into a zombie or simply send spam out from it.
Better to use the /tmp of the server or make the cache folder only writable for scripts from the same source.
Chris Heilmann
I filed a bug on Github about this, too. It is very dangerous to create a folder on your system that is read/write/execute all. Any attacker could run their own scripts in this folder and turn your server into a zombie or simply send spam out from it.
Better to use the /tmp of the server or make the cache folder only writable for scripts from the same source.