[18161] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Is /tmp still appropriate? (was Re: [hacksware]Pine temporary

daemon@ATHENA.MIT.EDU (stanislav shalunov)
Tue Dec 19 00:20:41 2000

Message-Id:  <87itohi4gm.fsf@cain.internet2.edu>
Date:         Mon, 18 Dec 2000 20:29:13 -0500
Reply-To: shalunov@INTERNET2.EDU
From: stanislav shalunov <shalunov@INTERNET2.EDU>
X-To:         Michael Damm <miked@ACCESSNW.NET>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To:  <Pine.LNX.4.05.10012151231430.690-100000@mail.accessnw.net>

Michael Damm <miked@ACCESSNW.NET> writes:

> I alwas was a difficult child.
> TMPKEY="$RANDOM"
> echo "foo" >/tmp/blah.$TMPKEY

This is actually a single linear transform of PID+NOW into 16-bit
space (((pid+now)*1103515245 + 12345) & 32767).  Trivial guess.

--
Stanislav Shalunov <shalunov@internet2.edu>	Internet Engineer, Internet2

A fool's brain digests philosophy into folly, science into superstition,
and art into pedantry.  Hence University education.        -- G. B. Shaw


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[18161] in bugtraq

Re: Is /tmp still appropriate? (was Re: [hacksware]Pine temporary

daemon@ATHENA.MIT.EDU (stanislav shalunov)Tue Dec 19 00:20:41 2000

daemon@ATHENA.MIT.EDU (stanislav shalunov)
Tue Dec 19 00:20:41 2000