Re: many packages write to `temporary-file-directory' insecurely

emacs-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: many packages write to `temporary-file-directory' insecurely

From:	Steve Kemp
Subject:	Re: many packages write to `temporary-file-directory' insecurely
Date:	Mon, 18 Mar 2002 23:49:01 +0000
User-agent:	Mutt/1.2.5i

On Mon, Mar 18, 2002 at 05:36:23PM -0500, Colin Walters wrote:

> I was talking with some Debian hackers on IRC about this problem, and
> one of them suggested a setgid helper program, sort of like movemail. 
> This seems to me to be the best solution.  We could give it arguments
> like:
> 
> /usr/lib/emacs/21.3/update-score --file=/var/games/emacs/snake-scores 
>  --add-score "Jane Hacker <address@hidden>   12345 points"

> Any thoughts/objections regarding this solution?

  It would solve the file locking problem, and allow shared scores.

  But it would appear to have the major flaw that a malicious user
 could fake their scores with almost no effort, eg:

[matrix] skx > update-score --file=/var/games/emacs/snake-score --add-score 
"Steve 99999999999999 points"

  I assume that you'd be making this setgid games, so that other files
 wouldn't be overwritable..?

Steve
---

[Prev in Thread]

Current Thread

[Next in Thread]

Re: many packages write to `temporary-file-directory' insecurely, (continued)

Prev by Date: Re: Should invisible imply intangible?
Next by Date: Re: address@hidden: asymmetries and contradictions in shell navigation using C-a and C-e on a prompt line]
Previous by thread: Re: many packages write to `temporary-file-directory' insecurely
Next by thread: Re: many packages write to `temporary-file-directory' insecurely
Index(es):
- Date
- Thread