Date: Thu, 27 Jan 2000 20:40:10 -0500 (EST) From: Mike Heffner <mheffner@mailandnews.com> To: Kris Kennaway <kris@hub.freebsd.org> Cc: FreeBSD-audit <FreeBSD-audit@FreeBSD.ORG>, Mike Heffner <spock@techfour.net>, Garance A Drosihn <drosih@rpi.edu> Subject: Re: use mkstemp(3) for sort Message-ID: <XFMail.20000127204010.mheffner@mailandnews.com> In-Reply-To: <Pine.BSF.4.21.0001271628080.76830-100000@hub.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On 28-Jan-2000 Kris Kennaway wrote:
| On Thu, 27 Jan 2000, Garance A Drosihn wrote:
|
|> For something like this, I sometimes wonder if it would be better
|> to have the program ('sort', in this case) to create a randomly-
|> named directory in /tmp, make sure that directory is owned by the
|> right user and is only readable by the user, and then create all
|> if it's temporary files inside of that directory.
|
| This sounds like a better solution than making an invasive change which
| will have to be re-merged if we upgrade the code (assuming it's not taken
| up by the vendor).
|
| i.e. create the private directory securely with mkdtemp, and sort can be
| as insecure as it wants within it :-)
Alright. That sounds a lot easier than what I did. I'll revisit it later this
weekend, unless someone else makes that change before then. Thanks for
reviewing it though.
---------------------------------
Mike Heffner <spock@techfour.net>
Fredericksburg, VA
ICQ# 882073
Date: 27-Jan-2000 Time: 20:32:46
---------------------------------
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-audit" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?XFMail.20000127204010.mheffner>