Secure temporary fifo creation

To: debian-mentors@lists.debian.org
Subject: Secure temporary fifo creation
From: Greg Deitrick <gdeitrick@mylinuxisp.com>
Date: Sun, 16 May 2004 21:30:10 -0500
Message-id: <[🔎] 200405162130.10456.gdeitrick@mylinuxisp.com>
Reply-to: gdeitrick@mylinuxisp.com

Mentors,

What is the recommended method for securely creating a temporary named pipe in 
C code?

Looking at the man pages for various library calls it appears that tmpfile(3) 
is probably an acceptable means of creating a temporary file, but this 
returns a FILE *.  The upstram source I'm packaging needs to make a temporary 
fifo.  It uses tempnam(3) to get a temporary file name as a char *, and then 
mkfifo(3) to make the fifo named pipe from the file name.  Is this 
sufficiently secure?  Should I post this to debian-security?

Thanks,
Greg Deitrick

Reply to:

Follow-Ups:
- Re: Secure temporary fifo creation
  - From: GCS <gcs@lsc.hu>
- Re: Secure temporary fifo creation
  - From: Will Newton <will@misconception.org.uk>
- Re: Secure temporary fifo creation
  - From: Matt Zimmerman <mdz@debian.org>

Prev by Date: Re: cdw removal
Next by Date: Re: Secure temporary fifo creation
Previous by thread: Re: cdw removal
Next by thread: Re: Secure temporary fifo creation
Index(es):
- Date
- Thread