Date: Mon, 20 Nov 2000 13:10:12 +0100 From: Brad Knowles <blk@skynet.be> To: Kris Kennaway <kris@FreeBSD.ORG> Cc: FreeBSD audit mailing list <audit@FreeBSD.ORG> Subject: Re: Possible unsafe uses of mktemp() found during "make buildworld"... Message-ID: <v04220800b63ec355431b@[195.238.1.121]> In-Reply-To: <20001120015917.A75391@citusc17.usc.edu> References: <v04220807b63ea24a1d11@[195.238.1.121]> <20001120015917.A75391@citusc17.usc.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
[-- Attachment #1 --] At 1:59 AM -0800 2000/11/20, Kris Kennaway wrote: > Well, they'd be more useful with pathnames attached to work out which > directory they live in :-) I can give you the output from a grep with a before context of a couple lines (or so), but unfortunately the warnings are issued without a full path, so the only way you can determine where the module is located is by looking at the few lines preceeding the warning. ;-( > The existence of these is known, though a master list of things to fix > would be good. My new command is: $ grep -i -B2 mkstemp\(\) make.buildworld The output is attached. > the really useful thing would be to submit patches to > fix them. Sadly, anything to do with changing source code is unlikely to be coming from me within the next couple of months. I have an invited talk to write for LISA, I have Christmas vacation, I have to re-learn how to program, etc.... The reason why I subscribed to this list was that I hoped it would give me a chance to actually do some real work with source code (for a change), but that simply hasn't materialized. Maybe once I get back from Christmas, I can start trying to work on something like this.... [-- Attachment #2 --] [-- Attachment #3 --] -- These are my opinions -- not to be taken as official Skynet policy ====================================================================== Brad Knowles, <blk@skynet.be> || Belgacom Skynet SA/NV Systems Architect, Mail/News/FTP/Proxy Admin || Rue Colonel Bourg, 124 Phone/Fax: +32-2-706.13.11/12.49 || B-1140 Brussels http://www.skynet.be || Belgium "They that can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety." -Benjamin Franklin, Historical Review of Pennsylvania.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?v04220800b63ec355431b>