[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Bug-tar] Unexpected symlink attack due to change in link following
|
From: |
Sergey Poznyakoff |
|
Subject: |
Re: [Bug-tar] Unexpected symlink attack due to change in link following behaviour |
|
Date: |
Mon, 12 Sep 2005 15:45:52 +0300 |
Clarence Dang <address@hidden> wrote:
> almost nobody reads documentation.
That is, unfortunately, true. But this problem has nothing to do with
GNU tar or any other project in particular. In general, all any
developer is able to do is properly document any changes to the project.
If a user does not wish to read the docs, it is his problem.
> Changing subtle behaviour is dangerous as DOSEMU has shown.
Nevertheless, it has to be done from time to time due to various reasons
(in this case it was to fix old incompatible behavior).
Regards,
Sergey