Re: world readable temp files and bash? set -C, noclobber (gnustandards

bug-standards

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: world readable temp files and bash? set -C, noclobber (gnustandards

From:	Karl Berry
Subject:	Re: world readable temp files and bash? set -C, noclobber (gnustandards suggestion and/or question)
Date:	Thu, 27 Jan 2011 01:42:32 GMT

    Is the problem mentioned in the standards the same with the one described 
here?
    http://www.linuxsecurity.com/content/view/115462/151/

Yes.

    If yes, then, maybe, advice to use mktemp would be more appropriate?

Mentioning mktemp is a good idea.  But doesn't noclobber also avoid the
security problem (though in an inferior way), because either your
program or the attacker's will fail to create the file, with noclobber
set.

Here's my attempt at a new paragraph:

  In bash, use @code{set -C} (long name @code{noclobber}) to avoid this
  problem; the @code{mktemp} utility is a more general solution for
  creating temporary files from shell scripts (@pxref{mktemp
  invocation,,, coreutils, GNU Coreutils}).

Wdyt?

[Prev in Thread]

Current Thread

[Next in Thread]

world readable temp files and bash? set -C, noclobber (gnustandards suggestion and/or question), Michael V. Antosha, 2011/01/24
- Re: world readable temp files and bash? set -C, noclobber (gnustandards suggestion and/or question), Ralf Wildenhues, 2011/01/25
  - Re: world readable temp files and bash? set -C, noclobber (gnustandards suggestion and/or question), Karl Berry, 2011/01/25
  - Re: world readable temp files and bash? set -C, noclobber (gnustandards suggestion and/or question), Michael V. Antosha, 2011/01/26
    - Re: world readable temp files and bash? set -C, noclobber (gnustandards suggestion and/or question), Karl Berry <=
    - Re: world readable temp files and bash? set -C, noclobber (gnustandards suggestion and/or question), Ralf Wildenhues, 2011/01/27
    - Re: world readable temp files and bash? set -C, noclobber (gnustandards suggestion and/or question), Michael V. Antosha, 2011/01/27
    - Re: world readable temp files and bash? set -C, noclobber (gnustandards suggestion and/or question), Karl Berry, 2011/01/28
    - Re: world readable temp files and bash? set -C, noclobber (gnustandards suggestion and/or question), Ralf Wildenhues, 2011/01/28

Prev by Date: Re: world readable temp files and bash? set -C, noclobber (gnustandards suggestion and/or question)
Next by Date: Re: world readable temp files and bash? set -C, noclobber (gnustandards suggestion and/or question)
Previous by thread: Re: world readable temp files and bash? set -C, noclobber (gnustandards suggestion and/or question)
Next by thread: Re: world readable temp files and bash? set -C, noclobber (gnustandards suggestion and/or question)
Index(es):
- Date
- Thread