From mboxrd@z Thu Jan  1 00:00:00 1970
Path: quimby.gnus.org!not-for-mail
From: Richard Stallman <rms@gnu.org>
Newsgroups: gmane.emacs.devel
Subject: Re: many packages write to `temporary-file-directory' insecurely
Date: Sun, 3 Mar 2002 07:39:30 -0700 (MST)
Message-ID: <200203031439.g23EdUe00502@aztec.santafe.edu>
References: <1014945351.23435.102.camel@space-ghost> <m3lmdbkwz0.fsf@Janik.cz>
Reply-To: rms@gnu.org
NNTP-Posting-Host: quimby2.netfonds.no
X-Trace: quimby2.netfonds.no 1015166877 9942 195.204.10.66 (3 Mar 2002 14:47:57 GMT)
X-Complaints-To: usenet@quimby2.netfonds.no
NNTP-Posting-Date: 3 Mar 2002 14:47:57 GMT
Cc: walters@verbum.org, emacs-devel@gnu.org
Original-Received: from fencepost.gnu.org ([199.232.76.164])
	by quimby2.netfonds.no with esmtp (Exim 3.12 #1 (Debian))
	id 16hXHI-0002aF-00
	for <emacs-devel@quimby.gnus.org>; Sun, 03 Mar 2002 15:47:57 +0100
Original-Received: from localhost ([127.0.0.1] helo=fencepost.gnu.org)
	by fencepost.gnu.org with esmtp (Exim 3.33 #1 (Debian))
	id 16hXBd-0008Vq-00; Sun, 03 Mar 2002 09:42:05 -0500
Original-Received: from pele.santafe.edu ([192.12.12.119])
	by fencepost.gnu.org with esmtp (Exim 3.33 #1 (Debian))
	id 16hX99-0008AM-00; Sun, 03 Mar 2002 09:39:31 -0500
Original-Received: from aztec.santafe.edu (aztec [192.12.12.49])
	by pele.santafe.edu (8.11.6+Sun/8.9.3) with ESMTP id g23Edcu13677;
	Sun, 3 Mar 2002 07:39:38 -0700 (MST)
Original-Received: (from rms@localhost)
	by aztec.santafe.edu (8.10.2+Sun/8.9.3) id g23EdUe00502;
	Sun, 3 Mar 2002 07:39:30 -0700 (MST)
X-Authentication-Warning: aztec.santafe.edu: rms set sender to rms@aztec using -f
Original-To: Pavel@Janik.cz
In-reply-to: <m3lmdbkwz0.fsf@Janik.cz> (Pavel@Janik.cz)
Errors-To: emacs-devel-admin@gnu.org
X-BeenThere: emacs-devel@gnu.org
X-Mailman-Version: 2.0.5
Precedence: bulk
List-Help: <mailto:emacs-devel-request@gnu.org?subject=help>
List-Post: <mailto:emacs-devel@gnu.org>
List-Subscribe: <http://mail.gnu.org/mailman/listinfo/emacs-devel>,
	<mailto:emacs-devel-request@gnu.org?subject=subscribe>
List-Id: Emacs development discussions. <emacs-devel.gnu.org>
List-Unsubscribe: <http://mail.gnu.org/mailman/listinfo/emacs-devel>,
	<mailto:emacs-devel-request@gnu.org?subject=unsubscribe>
List-Archive: <http://mail.gnu.org/pipermail/emacs-devel/>
Xref: quimby.gnus.org gmane.emacs.devel:1700
X-Report-Spam: http://spam.gmane.org/gmane.emacs.devel:1700

    The problem is actually in gamegrid.el's gamegrid-add-score. We should not
    write to file if it is symlink or hard link. Am I right?

That is not guaranteed to prevent the problem, since someone could
create a symlink in between the testing and the writing.

It seems to me that we should always use make-temp-file for writing
into /tmp.  For now, I changed snake.el to specify a file in your
home dir.  It could also be a file in /var, if someone set up the file
in advance to make sure it can't be deleted, just edited.


_______________________________________________
Emacs-devel mailing list
Emacs-devel@gnu.org
http://mail.gnu.org/mailman/listinfo/emacs-devel