Re: /etc/utmp

[ole!rwing!pat () nwnexus wa com (Pat Myrto)]

"In the previous message, Jeff Allen said..."
> Pat Myrto wrote:
> > Seems anything creating a file while running with root privs is
> > full of gotchas, especially with symlinks around.  There is supposed
> > to be a 'safefile' function in the mail command that if used properly
> > makes sure the file isn't a symlink or being switched under it, I
> > would like to see an example of how that is done and not being subject
> > to race conditions.
>
> There is some code in taintperl to make sure that a symlink swap
> hasn't taken place beneath the SUID scipt in question. Grep the perl
> sources for "Mail". Larry has left a little surprise for would-be
> hackers. :)

Thanks for pointing that out - I will check that out.  Sounds like an idea
I can unashamedly borrow...  :-)

> You may be able to work with it and get the kind of routine you are
> talking about.

Great!!

-- 
pat@rwing  [If all fails, try:  rwing!pat () ole cdac com]  Pat Myrto - Seattle WA
"No one has the right to destroy another person's belief by demanding
empirical evidence."  --   Ann Landers, nationally syndicated advice columnist
and Director at Handgun Control Inc.