[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: euidaccess
|
From: |
Jim Meyering |
|
Subject: |
Re: euidaccess |
|
Date: |
Sat, 06 Mar 2010 18:38:33 +0100 |
Bruno Haible wrote:
> Jim Meyering wrote:
>> For some of the same reasons, the euidaccess function/module should be
>> avoided, simply because it cannot be used robustly -- by its very nature.
>> Use faccessat instead.
>
> Here's a proposed doc update and additional warnings for the use of
> 'access' and 'euidaccess' (guarded by GNULIB_POSIXCHECK):
>
> 2010-03-06 Bruno Haible <address@hidden>
>
> Clarify access, euidaccess, faccessat.
> * doc/posix-functions/faccessat.texi: Mention security problem under
> "Other problems", not "Portability problems".
> * doc/posix-functions/access.texi: Likewise. Mention a related security
> problem.
> * doc/glibc-functions/euidaccess.texi: Mention security problems.
> * lib/euidaccess.c: Add comments about platforms.
> * lib/unistd.in.h (access, euidaccess): Add warnings.
Thanks for the comments and documentation improvements.
They all look fine.
- exitfail, Simon Josefsson, 2010/03/04
- Re: exitfail, Jim Meyering, 2010/03/04
- Re: exitfail, Simon Josefsson, 2010/03/04
- relax licenses for both exitfail and exit, Jim Meyering, 2010/03/05
- Re: relax licenses for both exitfail and exit, Simon Josefsson, 2010/03/05
- Re: relax licenses for both exitfail and exit, Jim Meyering, 2010/03/06
- Re: euidaccess, Bruno Haible, 2010/03/06
- Re: euidaccess, Jim Meyering, 2010/03/06
- Re: euidaccess, Bruno Haible, 2010/03/06
- Re: euidaccess,
Jim Meyering <=
- Re: euidaccess, Paolo Bonzini, 2010/03/07
- Re: euidaccess, Simon Josefsson, 2010/03/06
Re: exitfail, Bruno Haible, 2010/03/06