From owner-freebsd-hackers Thu Jan 16 17:29:54 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.4/8.8.4) id RAA00493 for hackers-outgoing; Thu, 16 Jan 1997 17:29:54 -0800 (PST) Received: from pdx1.world.net (pdx1.world.net [192.243.32.18]) by freefall.freebsd.org (8.8.4/8.8.4) with ESMTP id RAA00488 for ; Thu, 16 Jan 1997 17:29:52 -0800 (PST) From: proff@suburbia.net Received: from suburbia.net (suburbia.net [203.4.184.1]) by pdx1.world.net (8.7.5/8.7.3) with SMTP id RAA16671 for ; Thu, 16 Jan 1997 17:30:53 -0800 (PST) Received: (qmail 15942 invoked by uid 110); 17 Jan 1997 01:29:28 -0000 Message-ID: <19970117012928.15941.qmail@suburbia.net> Subject: Re: open () unlinked? In-Reply-To: <32DE6EAC.1A1B@vailsys.com> from Hal Snyder at "Jan 16, 97 12:08:44 pm" To: hal@vailsys.com Date: Fri, 17 Jan 1997 12:29:28 +1100 (EST) Cc: hackers@freebsd.org X-Mailer: ELM [version 2.4ME+ PL28 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-hackers@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > I was at Marcus Ranum's Usenix '97 tuturial on Coding for Hostile > Environments, and the subject came up of creating temporary files > securely. Open-then-unlink leaves a window for someone to get at the > file. > > Has there been any discussion here of adding, e.g., an O_UNLINK flag to > open (), that would effectively create an anonymous temp file? > If you are using an anonymous temp file then you are doing something wrong. Temp files should only be used to pass data from one process to another. Cheers, Julian.