Re: Braindump: Can we get rid of the font-cache-group question?

To: debian-tetex-maint@lists.debian.org
Subject: Re: Braindump: Can we get rid of the font-cache-group question?
From: Ralf Stubner <ralf.stubner@web.de>
Date: Sat, 3 Jun 2006 20:54:44 +0200
Message-id: <[🔎] 20060603185444.GC15211@thinkpad>
Mail-followup-to: debian-tetex-maint@lists.debian.org
In-reply-to: <[🔎] 87lkse9mnt.fsf@florent.maison>
References: <20060522110149.GD14875@thinkpad> <[🔎] 86d5dtmehn.fsf@alhambra.kuesterei.ch> <[🔎] 20060601143953.GA6183@thinkpad> <[🔎] 20060601195701.GD6183@thinkpad> <[🔎] 87zmgvbwbi.fsf@florent.maison> <[🔎] 20060602215223.GA3326@thinkpad> <[🔎] 87lkse9mnt.fsf@florent.maison>

On Sat, Jun 03, 2006 at 19:25 +0200, Florent Rougon wrote:
> Ralf Stubner <ralf.stubner@web.de> wrote:
> > openout_any = p
> > openin_any = a
> >
> > However, metafont does not semm to honour these settings. I still think
> > that working in a world writable directory is a bad idea. But a RFE for
> 
> What's that? Request For Enhancement?
> Does someone work on a Metafont fork?...

No. I was extrapolating from my (very limited) knowledge of the TeX
source. TeX itself in the sense of tex.web does not have any routines
for interacting with the filesystem. That part is added via change
files, which makes sense when you want to write extremly portable
software. The above switsches are also implemented in this outer layer.
I am assuming that metafont has a similar outer layer, where one could
honour these switches, too.

However, I have just tested that these settings do not protect TeX
itself from such symlink attacks. It seems that only the name of link,
not the name of the file the link is pointing to, is checked.

I would say this is the right summary for the current situation:

[...]
>  I'd stick to tell users not
> to compile their documents in world-writable directories...

And as long as people are smart enought to avaiod world-writable
directories, they are save wrt to symlink attacks ...

cheerio
ralf

Reply to:

Follow-Ups:
- Re: Braindump: Can we get rid of the font-cache-group question?
  - From: Florent Rougon <f.rougon@free.fr>

References:
- Re: Braindump: Can we get rid of the font-cache-group question?
  - From: Frank Küster <frank@debian.org>
- Re: Braindump: Can we get rid of the font-cache-group question?
  - From: Ralf Stubner <ralf.stubner@physik.uni-erlangen.de>
- Re: Braindump: Can we get rid of the font-cache-group question?
  - From: Ralf Stubner <ralf.stubner@physik.uni-erlangen.de>
- Re: Braindump: Can we get rid of the font-cache-group question?
  - From: Florent Rougon <f.rougon@free.fr>
- Re: Braindump: Can we get rid of the font-cache-group question?
  - From: Ralf Stubner <ralf.stubner@web.de>
- Re: Braindump: Can we get rid of the font-cache-group question?
  - From: Florent Rougon <f.rougon@free.fr>

Prev by Date: Re: Future versions of teTeX, and TeXlive as a replacement
Next by Date: Re: Braindump: Can we get rid of the font-cache-group question?
Previous by thread: Re: Braindump: Can we get rid of the font-cache-group question?
Next by thread: Re: Braindump: Can we get rid of the font-cache-group question?
Index(es):
- Date
- Thread