Symbolic Links VS. Security
Shoe
acu at stat-l
Sun Sep 30 06:38:49 AEST 1984
I think a serious oversight by Berkeley when adding symbolic links was
the failure to add a sys call (or library routine) that resolves an
arbitrary path into a path guaranteed to be free from symbolic links.
(No, this is not trivial to do with readlink).
This would be especially useful when you have to back up to check the
permissions of a file's parent directory. Access is just not flexible
enough.
--
Mark Shoemaker /dev/shoe
...!pur-ee!pucc-k:acu mas at purdue
The way to do is to be.
-- Lao Tzu
More information about the Comp.bugs.4bsd.ucb-fixes
mailing list