[Pm-utils] some simple patches from fedora

Till Maas opensource at till.name
Wed Jan 30 07:41:04 PST 2008

On Wed January 30 2008, Stefan Seyfried wrote:

> If somebody managed to get a symlink where the logfile should be, you are
> fscked. So i think this is less secure.

Btw. even with the old code, you would be fscked, because it would then be 
only a race condition. It is not guaranteed that nobody creates a symlink 
after the rm of it and before the exec is executed. Here the new patch is 
even more secure, e.g. when the file was once sucessfully created, e.g. 
in /var/tmp, it requires extra privilegies to create a symlink instead.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 827 bytes
Desc: This is a digitally signed message part.
Url : http://lists.freedesktop.org/archives/pm-utils/attachments/20080130/72230d23/attachment.pgp 

More information about the Pm-utils mailing list