[11592] in bugtraq
Re: Insecure use of file in /tmp by trn
daemon@ATHENA.MIT.EDU (Shuman)
Mon Aug 30 04:28:47 1999
Mime-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Message-Id: <Pine.BOO.4.04.9908281306590.2468-100000@oubliette.annexgrp.org>
Date: Sat, 28 Aug 1999 13:09:09 +0600
Reply-To: Shuman <shuman@ANNEXGRP.ORG>
From: Shuman <shuman@ANNEXGRP.ORG>
X-To: BUGTRAQ@SECURITYFOCUS.COM
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <87zozhnm0n.fsf@pfaffben.user.msu.edu>
On Tue, 24 Aug 1999, Ben Pfaff wrote:
[ Debian uses a program called `mktemp' to create temporary files in
[ shell scripts. Other distributions might well adopt this or a similar
[ solution. An excerpt from its manpage is enclosed below.
RedHat includes a mktemp too, its a package by itself. From the look of
the manpage, it seems to be based on the mktemp that comes with Debian,
just with one extra option. The option is "-d", which creates a unique
directory rather than a file.
