| From: | Alvaro Herrera <alvherre(at)dcc(dot)uchile(dot)cl> |
|---|---|
| To: | Neil Conway <neilc(at)samurai(dot)com> |
| Cc: | Rod Taylor <pg(at)rbt(dot)ca>, PostgreSQL Development <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: Possible make_oidjoins_check Security Issue |
| Date: | 2004-10-20 03:55:29 |
| Message-ID: | 20041020035529.GA15004@dcc.uchile.cl |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers pgsql-patches |
On Wed, Oct 20, 2004 at 12:52:57PM +1000, Neil Conway wrote:
> On Wed, 2004-10-20 at 06:18, Rod Taylor wrote:
> > http://secunia.com/advisories/12860/
>
> This seems like a rather inconsequential problem, but it should be
> fixed. The first two ideas that come to mind: use temporary files in
> $PWD rather than /tmp, or create a subdirectory in /tmp to use for the
> temporary files.
Better, use mktemp(1). The thread testing script already does it IIRC.
--
Alvaro Herrera (<alvherre[a]dcc.uchile.cl>)
"Un poeta es un mundo encerrado en un hombre" (Victor Hugo)
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Tom Lane | 2004-10-20 04:11:12 | Re: Possible make_oidjoins_check Security Issue |
| Previous Message | Greg Sabino Mullane | 2004-10-20 03:50:21 | Re: Time off |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Tom Lane | 2004-10-20 04:11:12 | Re: Possible make_oidjoins_check Security Issue |
| Previous Message | Neil Conway | 2004-10-20 02:52:57 | Re: Possible make_oidjoins_check Security Issue |