Re: CVE-2008-5378: possible symlink attacks

To: debian-devel@lists.debian.org
Subject: Re: CVE-2008-5378: possible symlink attacks
From: Thomas Viehmann <tv@beamnet.de>
Date: Mon, 22 Dec 2008 22:15:27 +0100
Message-id: <[🔎] 4950036F.1060906@beamnet.de>
In-reply-to: <[🔎] 49500245.703@beamnet.de>
References: <[🔎] alpine.DEB.2.00.0812221514540.32708@wr-linux02> <[🔎] 49500245.703@beamnet.de>

Thomas Viehmann wrote:
> Andreas Tille wrote:
>>   2. Make the temp file save against symlink attacks.  The question
>>      I have for this case which should probably be prefered is: How
>>      can I savely teach an independent script about the PIDs of a
>>      crashed program that should be stopped.  I think random file names
>>      will not really work here or do I miss something?
> How about using mkstemp with a prefix containing the pid (i.e. template
> foo_$PID_XXXXXX) and have other programs discard the random part. The
> main thing here is that he file must be created in a way that ensures
> the file to be created does not exist, not that it must not contain a
> pattern.

Oh, and if you really care, be sure that it's a regular file (not a
symlink pointing to something) owned by yourself before using it as a
hint to kill your processes.

Kind regards

T.
-- 
Thomas Viehmann, http://thomas.viehmann.net/

Reply to:

Follow-Ups:
- Re: CVE-2008-5378: possible symlink attacks
  - From: Andreas Tille <tillea@rki.de>

References:
- Re: CVE-2008-5378: possible symlink attacks
  - From: Andreas Tille <tillea@rki.de>
- Re: CVE-2008-5378: possible symlink attacks
  - From: Thomas Viehmann <tv@beamnet.de>

Prev by Date: Re: CVE-2008-5378: possible symlink attacks
Next by Date: Bug#509517: ITP: mbrola -- multilingual software speech synthesizer
Previous by thread: Re: CVE-2008-5378: possible symlink attacks
Next by thread: Re: CVE-2008-5378: possible symlink attacks
Index(es):
- Date
- Thread