Date: Fri, 24 Nov 2000 14:33:36 -0800 From: Kris Kennaway <kris@citusc.usc.edu> To: audit@FreeBSD.org Subject: Project for auditors Message-ID: <20001124143336.A70550@citusc17.usc.edu>
next in thread | raw e-mail | index | archive | help
[-- Attachment #1 --] Here's something I just noticed../usr/bin/mail will repeatedly create files with the same name from mktemp(), of the form /tmp/RsXXXXXX (as well as some others). This needs to be fixed to use mkstemp() since theres the very easy to exploit race condition there. Anyone up for it? Kris [-- Attachment #2 --] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.4 (FreeBSD) Comment: For info see http://www.gnupg.org iEYEARECAAYFAjoe7MAACgkQWry0BWjoQKXx9wCggAm/hal4rulK03J7W2OWtwtG ww0An2iYPZTDOAFGD5yJbJo5AP51zYDX =duPO -----END PGP SIGNATURE-----
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20001124143336.A70550>