From owner-freebsd-bugs Wed May 17 13:40: 5 2000 Delivered-To: freebsd-bugs@freebsd.org Received: from freefall.freebsd.org (freefall.FreeBSD.ORG [204.216.27.21]) by hub.freebsd.org (Postfix) with ESMTP id 2DFB337BECD for ; Wed, 17 May 2000 13:40:01 -0700 (PDT) (envelope-from gnats@FreeBSD.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.9.3/8.9.2) id NAA91286; Wed, 17 May 2000 13:40:01 -0700 (PDT) (envelope-from gnats@FreeBSD.org) Date: Wed, 17 May 2000 13:40:01 -0700 (PDT) Message-Id: <200005172040.NAA91286@freefall.freebsd.org> To: freebsd-bugs@FreeBSD.org Cc: From: Mike Heffner Subject: Re: bin/16929: [PATCH] prevent possible race condition Reply-To: Mike Heffner Sender: owner-freebsd-bugs@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org The following reply was made to PR bin/16929; it has been noted by GNATS. From: Mike Heffner To: spock@techfour.net Cc: vanderh@ecf.toronto.edu, freebsd-gnats-submit@FreeBSD.org Subject: Re: bin/16929: [PATCH] prevent possible race condition Date: Wed, 17 May 2000 16:34:49 -0400 (EDT) On 16-May-2000 Tim Vanderhoek wrote: | > | >sort can create the following predictable tempfiles: | >/tmp/sort{pid}{seq} | | It appears that the security implications of this have already been | fixed in rev.1.11 of src/gnu/usr.bin/sort/sort.c. | yes, i suppose they have been. however, as sort can create multiple tempfiles it was suggested that they be kept in one directory per sort process running (see thread in -audit list), rather than dumping them all in the temp dir. later, - Mike Heffner Fredericksburg, VA ICQ# 882073 http://my.ispchannel.com/~mheffner - To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-bugs" in the body of the message