Date: Thu, 18 Apr 2002 21:54:51 +0100 From: Ceri Davies <setantae@submonkey.net> To: Thomas Cannon <tcannon@noops.org> Cc: freebsd-questions@FreeBSD.ORG, security-officer@freebsd.org Subject: Re: I think this could be better Message-ID: <20020418205451.GA11069@submonkey.net> In-Reply-To: <20020418203742.GA10603@submonkey.net> References: <20020418121731.O4793-100000@stereophonic.noops.org> <20020418203742.GA10603@submonkey.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, Apr 18, 2002 at 09:37:42PM +0100, Ceri Davies wrote:
>
> While you're probably right to be concerned at use of a PID as a temporary
> filename, in this instance I'm not sure it's so terrible :
>
> {setantae@rhadamanth}-{/tmp} $ ln -s /etc.old/passwd install.35223
> {setantae@rhadamanth}-{/tmp} # ls -l
> total 154
> -r--r--r-- 1 root wheel 11 Apr 18 17:00 .X0-lock
> drwxrwxrwt 2 root wheel 512 Apr 18 17:00 .X11-unix
> -rw-r--r-- 1 setantae wheel 149989 Apr 18 21:03 foo
> lrwxr-xr-x 1 setantae wheel 15 Apr 18 21:26 install.35223 -> /etc.old/passwd
> -rw-r--r-- 1 rasputin wheel 37 Apr 18 17:24 wtf
> {setantae@rhadamanth}-{/tmp} $ su
> Password:
> {root@rhadamanth}-{/tmp} # mkdir -p install.35223
> mkdir: install.35223: Permission denied
> {root@rhadamanth}-{/tmp} #
And if you don't have /tmp mounted with nosymfollow (sigh...), then you'll
get "mkdir: install.352: File exists" instead.
I see your point regarding directories containing symlinks, however.
Ceri
--
get the cool shoe shine
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020418205451.GA11069>