Re: Secure temporary fifo creation

To: debian-mentors@lists.debian.org
Subject: Re: Secure temporary fifo creation
From: Matt Zimmerman <mdz@debian.org>
Date: Tue, 18 May 2004 12:28:56 -0700
Message-id: <[🔎] 20040518192856.GG14347@alcor.net>
Mail-followup-to: debian-mentors@lists.debian.org
In-reply-to: <[🔎] 200405162130.10456.gdeitrick@mylinuxisp.com>
References: <[🔎] 200405162130.10456.gdeitrick@mylinuxisp.com>

On Sun, May 16, 2004 at 09:30:10PM -0500, Greg Deitrick wrote:

> What is the recommended method for securely creating a temporary named pipe in 
> C code?
> 
> Looking at the man pages for various library calls it appears that tmpfile(3) 
> is probably an acceptable means of creating a temporary file, but this 
> returns a FILE *.  The upstram source I'm packaging needs to make a temporary 
> fifo.  It uses tempnam(3) to get a temporary file name as a char *, and then 
> mkfifo(3) to make the fifo named pipe from the file name.  Is this 
> sufficiently secure?  Should I post this to debian-security?

That method has exactly the same risks as taking no precautions at all,
since tmpfile(3) deletes the file after opening it.

Use mkdtemp(3) followed by mknod(2).

-- 
 - mdz

Reply to:

References:
- Secure temporary fifo creation
  - From: Greg Deitrick <gdeitrick@mylinuxisp.com>

Prev by Date: Re: dh_installinit...
Next by Date: release as a package or add to APT's file list?
Previous by thread: Re: debian-security (was: Re: Secure temporary fifo creation)
Next by thread: drbd package
Index(es):
- Date
- Thread