/tmp/staging before installing into it, to avoid security problems.
into the install area. Here is an example of typical DESTDIR usage:
@example
+mkdir /tmp/staging &&
make DESTDIR=/tmp/staging install
@end example
-This places install objects in a directory tree built under
+The @command{mkdir} command avoids a security problem if the attacker
+creates a symbolic link from @file{/tmp/staging} to a victim area;
+then @command{make} places install objects in a directory tree built under
@file{/tmp/staging}. If @file{/gnu/bin/foo} and
@file{/gnu/share/aclocal/foo.m4} are to be installed, the above command
would install @file{/tmp/staging/gnu/bin/foo} and