From owner-freebsd-security Fri Jun 8 13:26:35 2001 Delivered-To: freebsd-security@freebsd.org Received: from tomts7-srv.bellnexxia.net (tomts7.bellnexxia.net [209.226.175.40]) by hub.freebsd.org (Postfix) with ESMTP id 750A637B403 for ; Fri, 8 Jun 2001 13:26:28 -0700 (PDT) (envelope-from glassfish@glassfish.net) Received: from frogbox.glassfish.net ([64.230.57.207]) by tomts7-srv.bellnexxia.net (InterMail vM.4.01.03.16 201-229-121-116-20010115) with SMTP id <20010608202627.CHNL19826.tomts7-srv.bellnexxia.net@frogbox.glassfish.net> for ; Fri, 8 Jun 2001 16:26:27 -0400 Received: (qmail 22761 invoked from network); 8 Jun 2001 20:26:26 -0000 Received: from unknown (HELO MAINWS) (192.0.0.80) by 192.0.0.4 with SMTP; 8 Jun 2001 20:26:26 -0000 From: "Michael Tang Helmeste" To: "Buliwyf McGraw" Cc: Subject: RE: Unsafe Message Date: Fri, 8 Jun 2001 16:26:14 -0400 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) In-Reply-To: X-MimeOLE: Produced By Microsoft MimeOLE V5.00.3018.1300 Importance: Normal Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Well, this may be changed in newer versions of the library, or you could go into the code yourself and change it. Personally I don't like going into other people's code, but if you really want to fix this, then the best of luck to you :) Theres not much other answer that I can provide other than this, sorry. -----Original Message----- From: owner-freebsd-security@FreeBSD.ORG [mailto:owner-freebsd-security@FreeBSD.ORG]On Behalf Of Buliwyf McGraw Sent: Thursday, June 07, 2001 10:30 PM To: Michael Tang Helmeste Cc: security@FreeBSD.ORG Subject: RE: Unsafe Message > If its not in your code, its most likely in one of the libraries that it > uses. Thanks for your answer. I was reading the man of the functions: tmpnam() tempnam, tmpfile, tmpnam - temporary file routines mkstemp() make temporary file name (unique) But i am not sure about how improvement the libraries... i mean, there is a patch or something for this specific error??? Thanks for any "smart" answer. > > -----Original Message----- > From: owner-freebsd-security@FreeBSD.ORG > [mailto:owner-freebsd-security@FreeBSD.ORG]On Behalf Of Chris Johnson > Sent: Thursday, June 07, 2001 9:36 PM > To: Buliwyf McGraw > Cc: security@FreeBSD.ORG > Subject: Re: Unsafe Message > > > On Thu, Jun 07, 2001 at 08:32:32PM -0500, Buliwyf McGraw wrote: > > Everytime that i compile something on my server, i get this message: > > > > warning: tmpnam() possibly used unsafely; consider using mkstemp() > > > > What it means? > > tmpnam() was possibly used unsafely > > > how i can avoid it? > > consider using mkstemp() > > Chris > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message > ======================================================================= Buliwyf McGraw Administrador del Servidor Libertad Centro de Servicios de Informacion Universidad del Valle ======================================================================= To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message