On Tuesday, March 21, 2006 2:17 PM -0600 Matt LeBlanc <mleblanc-a09SyBuiYrA@xxxxxxxxxxxxxxxx>
wrote:
This is why the code now checks for symlinks prior to opening the file
for writing and attempts to delete the file and returns an error if
failing the deletion.
Don't you still have a window of vulnerability between the delete and
create when a malicious local process could recreate the symlink?
-------------------------------------------------------
This SF.Net email is sponsored by xPML, a groundbreaking scripting language
that extends applications into web and mobile media. Attend the live webcast
and join the prime developer group breaking into this new coding territory!
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=110944&bid=241720&dat=121642
|
Try Searching:
servers, voip, java, networking, microsoft ...
|
|
|
| 
