Date: Mon, 20 Nov 2000 01:59:17 -0800 From: Kris Kennaway <kris@FreeBSD.ORG> To: Brad Knowles <blk@skynet.be> Cc: FreeBSD audit mailing list <audit@FreeBSD.ORG> Subject: Re: Possible unsafe uses of mktemp() found during "make buildworld"... Message-ID: <20001120015917.A75391@citusc17.usc.edu> In-Reply-To: <v04220807b63ea24a1d11@[195.238.1.121]>; from blk@skynet.be on Mon, Nov 20, 2000 at 10:53:27AM %2B0100 References: <v04220807b63ea24a1d11@[195.238.1.121]>
next in thread | previous in thread | raw e-mail | index | archive | help
--9jxsPFA5p3P2qPhR Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mon, Nov 20, 2000 at 10:53:27AM +0100, Brad Knowles wrote: > Folks, >=20 > I don't know if this is interesting at all or not, but I recently=20 > discovered a number of "warning: mktemp() possibly used unsafely;=20 > consider using mkstemp()" type errors during a recent "make=20 > buildworld", and I thought it might be of use to provide that=20 > information here. Well, they'd be more useful with pathnames attached to work out which directory they live in :-) The existence of these is known, though a master list of things to fix would be good..the really useful thing would be to submit patches to fix them. Kris --9jxsPFA5p3P2qPhR Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.4 (FreeBSD) Comment: For info see http://www.gnupg.org iEYEARECAAYFAjoY9fUACgkQWry0BWjoQKWfvACg2wtp4e36z5hgquq4F+vPhwHV MwgAmwYZ9PVoaC3vTnO/YbNAtKNglIh4 =UQyG -----END PGP SIGNATURE----- --9jxsPFA5p3P2qPhR-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-audit" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20001120015917.A75391>