From owner-freebsd-current@FreeBSD.ORG Sat Dec 31 11:44:07 2005 Return-Path: X-Original-To: freebsd-current@freebsd.org Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 06DD716A41F; Sat, 31 Dec 2005 11:44:07 +0000 (GMT) (envelope-from cperciva@freebsd.org) Received: from pd5mo2so.prod.shaw.ca (shawidc-mo1.cg.shawcable.net [24.71.223.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id 758F343D53; Sat, 31 Dec 2005 11:44:06 +0000 (GMT) (envelope-from cperciva@freebsd.org) Received: from pd5mr8so.prod.shaw.ca (pd5mr8so-qfe3.prod.shaw.ca [10.0.141.184]) by l-daemon (Sun ONE Messaging Server 6.0 HotFix 1.01 (built Mar 15 2004)) with ESMTP id <0ISD000971XHBL30@l-daemon>; Sat, 31 Dec 2005 04:44:05 -0700 (MST) Received: from pn2ml2so.prod.shaw.ca ([10.0.121.146]) by pd5mr8so.prod.shaw.ca (Sun ONE Messaging Server 6.0 HotFix 1.01 (built Mar 15 2004)) with ESMTP id <0ISD00MW31XHWLI0@pd5mr8so.prod.shaw.ca>; Sat, 31 Dec 2005 04:44:05 -0700 (MST) Received: from [192.168.0.60] ([24.87.209.6]) by l-daemon (Sun ONE Messaging Server 6.0 HotFix 1.01 (built Mar 15 2004)) with ESMTP id <0ISD00JTO1XGII70@l-daemon>; Sat, 31 Dec 2005 04:44:05 -0700 (MST) Date: Sat, 31 Dec 2005 03:43:45 -0800 From: Colin Percival In-reply-to: <20051231015102.A51804@cons.org> To: Martin Cracauer Message-id: <43B66EF1.4020906@freebsd.org> MIME-version: 1.0 Content-type: text/plain; charset=ISO-8859-1 Content-transfer-encoding: 7bit X-Accept-Language: en-us, en X-Enigmail-Version: 0.93.0.0 References: <20051229221459.A17102@cons.org> <868xu22mmp.fsf@xps.des.no> <200512301856.28800.jhb@freebsd.org> <200512310115.40490.jhb@freebsd.org> <20051231015102.A51804@cons.org> User-Agent: Mozilla Thunderbird 1.0.7 (X11/20051228) Cc: =?ISO-8859-1?Q?Dag-Erling_Sm=F8rgra?= =?ISO-8859-1?Q?v?= , freebsd-current@freebsd.org Subject: Re: fetch extension - use local filename from content-dispositionheader (new diff) X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 31 Dec 2005 11:44:07 -0000 Martin Cracauer wrote: > The security implications are easy to understand and very well in line > with other Unix features. Unpacking an tar or zip file has a lot more > potential to do damage than this (because the unpacking can also > contains permissions, you can put a *.cgi with a+x just for starters). > > How come nobody demands that the 3 files that come out of "foo.tar" > are named foo.1, foo.2 and foo.3 instead of bar.c, bar.h and Makefile? The situation isn't quite identical (if you unpack a tarball, you should get the same result every time, while a malicious server could be used for an adaptive attack), but your point is still quite reasonable. I withdraw my objection to this feature, as long as the manual page contains appropriate warnings about not using this flag if there are any files in the current working directory which you don't want to have overwritten. Colin Percival