LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

Pencil, Pencil, and Pencil

Dividing the Linux desktop

LWN.net Weekly Edition for June 13, 2013

A report from pgCon 2013

Little things that matter in language design

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Making tempfiles from shell scripts

Making tempfiles from shell scripts

Posted Mar 31, 2011 9:51 UTC (Thu) by epa (subscriber, #39769)
Parent article: gnash: symlink attack

It's surprising how resilient the /tmp/foo.$$ idiom is, given the known symlink attacks. In their defence, most likely the developers felt that in a mere configure script it didn't matter - but I think we have to accept that it does matter, since drawing a line between code that matters and code that can be insecure would introduce more problems.

Is there a safe way to make temporary files from shell scripts?

Or, for that matter, can the kernel be patched to add a new permission bit for directories 'allow symlinks', it can be turned off for /tmp, and we're rid of this mess? (I guess hard links might still be a problem though)

(Log in to post comments)

Making tempfiles from shell scripts

Posted Mar 31, 2011 22:50 UTC (Thu) by jrn (subscriber, #64214) [Link]

> Is there a safe way to make temporary files from shell scripts?

mktemp -d?

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds