Date: Sun, 29 Jan 2006 12:04:35 +0100 From: Jan Srzednicki <w@expro.pl> To: Eriam Schaffter <eriam@eriamschaffter.info> Cc: apache@freebsd.org Subject: Re: mod_curb ridiculously unsafe tmp file creation Message-ID: <20060129110435.GM34989@miranda.expro.pl> In-Reply-To: <20060129130225.105BB2190FD@web.mediavirtuel.com> References: <20060129105418.GL34989@miranda.expro.pl> <20060129130225.105BB2190FD@web.mediavirtuel.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, Jan 29, 2006 at 11:57:04AM +0100, Eriam Schaffter wrote: > Hello > > Why is that so unsafe ? If I (as any unprivileged user) symlink /tmp/modcurb.log to anything that the Apache user has access to, the module will blindly append it's log data to that file, which can corrupt binary or structuralized text files of any kind. No checking if /tmp/modcurb.log exists is done at all. Anyway, /tmp is a pretty dumb location for a log file. -- Jan Srzednicki w@expro.pl
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060129110435.GM34989>