
There's more than one way to do things
	PerlMonks

Re: Re: Re: Re: Two-arg open() considered dangerous

by merlyn (Sage)

on Dec 12, 2001 at 00:52 UTC ( [id://131144]=note: print w/replies, xml )

Need Help??

This is an archived low-energy page for bots and other anonmyous visitors. Please sign up if you are a human and want to interact.

in reply to Re: Re: Re: Two-arg open() considered dangerous
in thread Two-arg open() considered dangerous

I think anyone starting a filename with whitespace deserves to suffer.

It's not a matter of suffering or not. It's a matter of being able to bypass security.

Suppose a setuid script will only write to a file I own, and I want to attack "fred". I create "(space)fred", it checks with "-O" and notes that I own it, and then proceeds to strip the whitespace on the open. And boom, I've written into a file I don't own.

Do not simply "ignore" special characters, saying "the user will have to suffer". As a bad guy, I could exploit your ignorance (heh), and get in. Bad design, worse results.

-- Randal L. Schwartz, Perl hacker

Comment on Re: Re: Re: Re: Two-arg open() considered dangerous

In Section Meditations

Domain Nodelet^?

www.com | www.net | www.org

Node Status^?

node history
Node Type: note [id://131144]
help

Sections^?

Information^?

Find Nodes^?

Leftovers^?

Notices^?

	• hippo	‥ epoptai's answer Re: how do I set a cookie and redirect was blessed by hippo!
	• erzuuli	‥ Anonymous Monks are no longer allowed to use Super Search, due to an excessive use of this resource by robots.