[11585] in bugtraq
Re: Insecure use of file in /tmp by trn
daemon@ATHENA.MIT.EDU (Rogier Wolff)
Sun Aug 29 23:59:58 1999
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Message-Id: <199908280759.JAA00636@cave.BitWizard.nl>
Date: Sat, 28 Aug 1999 09:59:42 +0200
Reply-To: Rogier Wolff <R.E.Wolff@BITWIZARD.NL>
From: Rogier Wolff <R.E.Wolff@BITWIZARD.NL>
X-To: pfaffben@msu.edu
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <87zozhnm0n.fsf@pfaffben.user.msu.edu> from Ben Pfaff at "Aug 24,
99 01:09:28 pm"
Ben Pfaff wrote:
> Rogier Wolff <R.E.Wolff@BITWIZARD.NL> writes:
> > Creating a tempfile from a C program is possible since we have a
[...]
> SYNOPSIS
> mktemp [-q] [-u] template
>
> DESCRIPTION
[...]
> If mktemp can successfully generate a unique file name, the file is cre-
> ated with mode 0600 (unless the -u flag is given) and the filename is
> printed to standard output.
Last I looked at the "mktemp" manpage it didn't create the file, and
was thus vulnerable to races. This is an incompatible change that
others didn't dare make.
The world is becoming a better place ;-)
Roger.
--
** R.E.Wolff@BitWizard.nl ** http://www.BitWizard.nl/ ** +31-15-2137555 **
*-- BitWizard writes Linux device drivers for any device you may have! --*
------ Microsoft SELLS you Windows, Linux GIVES you the whole house ------
