Date: Mon, 20 Nov 2000 08:11:35 +0200 From: Mark Murray <mark@grondar.za> To: Kris Kennaway <kris@FreeBSD.ORG> Cc: audit@FreeBSD.ORG Subject: Re: m4 tempfile fix Message-ID: <200011200611.eAK6BdJ17996@gratis.grondar.za> In-Reply-To: <20001119165711.A3579@citusc17.usc.edu> ; from Kris Kennaway <kris@FreeBSD.ORG> "Sun, 19 Nov 2000 16:57:11 PST." References: <20001119165711.A3579@citusc17.usc.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
> m4 was abusing mktemp() to make a unique prefix but then tacking on > predictable prefixes to make multiple files. I fixed it to create a > secure directory where it can play with its insecure filenames to its > heart content. Reviews, anyone? Don't like it, particularly if the directory is reasonably long-lived. All an attacker needs to do is spin-wait for your dir, then cd into it. M -- Mark Murray Join the anti-SPAM movement: http://www.cauce.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-audit" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200011200611.eAK6BdJ17996>