Beefy Boxes and Bandwidth Generously Provided by pair Networks
good chemistry is complicated,
and a little bit messy -LW
 
PerlMonks  

Re: Re: Re: Re: Two-arg open() considered dangerous

by merlyn (Sage)
on Dec 12, 2001 at 05:52 UTC ( #131144=note: print w/ replies, xml ) Need Help??


in reply to Re: Re: Re: Two-arg open() considered dangerous
in thread Two-arg open() considered dangerous

I think anyone starting a filename with whitespace deserves to suffer.
It's not a matter of suffering or not. It's a matter of being able to bypass security.

Suppose a setuid script will only write to a file I own, and I want to attack "fred". I create "(space)fred", it checks with "-O" and notes that I own it, and then proceeds to strip the whitespace on the open. And boom, I've written into a file I don't own.

Do not simply "ignore" special characters, saying "the user will have to suffer". As a bad guy, I could exploit your ignorance (heh), and get in. Bad design, worse results.

-- Randal L. Schwartz, Perl hacker


Comment on Re: Re: Re: Re: Two-arg open() considered dangerous

Log In?
Username:
Password:

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://131144]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others pondering the Monastery: (8)
As of 2014-12-20 02:45 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?

    Is guessing a good strategy for surviving in the IT business?





    Results (95 votes), past polls