[Pm-utils] some simple patches from fedora
Till Maas
opensource at till.name
Wed Jan 30 07:41:04 PST 2008
On Wed January 30 2008, Stefan Seyfried wrote:
> If somebody managed to get a symlink where the logfile should be, you are
> fscked. So i think this is less secure.
Btw. even with the old code, you would be fscked, because it would then be
only a race condition. It is not guaranteed that nobody creates a symlink
after the rm of it and before the exec is executed. Here the new patch is
even more secure, e.g. when the file was once sucessfully created, e.g.
in /var/tmp, it requires extra privilegies to create a symlink instead.
Regards,
Till
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 827 bytes
Desc: This is a digitally signed message part.
Url : http://lists.freedesktop.org/archives/pm-utils/attachments/20080130/72230d23/attachment.pgp
More information about the Pm-utils
mailing list