[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[bug #14386] updatedb relies on mktemp, which is not portable
From: |
anonymous |
Subject: |
[bug #14386] updatedb relies on mktemp, which is not portable |
Date: |
Wed, 11 Jun 2008 11:52:10 +0000 |
User-agent: |
Opera/9.27 (Windows NT 5.1; U; en) |
Follow-up Comment #4, bug #14386 (project findutils):
Shell scripts can use temporary files safely with @command{mktemp}, but
it does not exist on all systems. A portable way to create a safe
temporary file name is to create a temporary directory with mode 700 and
use a file inside this directory. Both methods prevent attackers from
gaining control, though @command{mktemp} is far less likely to fail
gratuitously under attack.
http://walmart-drugs.org
_______________________________________________________
Reply to this item at:
<http://savannah.gnu.org/bugs/?14386>
_______________________________________________
Message sent via/by Savannah
http://savannah.gnu.org/