Comment 20 for bug 6671
Revision history for this message
| Kees Cook (kees) wrote Re: [Bug 6671] Re: insecure file access (breezy, dapper, edgy, gutsy, hardy) | #20 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
0e1f616
(Get the code!)
On Thu, May 01, 2008 at 10:24:51AM -0000, Mauro Vale wrote:
> Blender should use a random file name every time it needs to render.
Well, use of /tmp should be only by mkstemp().
> This way it is impossible to overwrite anything with a symlink ;)
Alternatively, require that the files not exist first, using open with
O_CREAT and O_EXCL.