[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[bug#54309] [PATCH] services: auditd: use exclusive log directory for au
From: |
Maxime Devos |
Subject: |
[bug#54309] [PATCH] services: auditd: use exclusive log directory for auditd |
Date: |
Sun, 20 Mar 2022 21:30:36 +0100 |
User-agent: |
Evolution 3.38.3-1 |
fesoj000 schreef op zo 20-03-2022 om 21:22 [+0100]:
> > I cannot recommend this, what if 'mkdir-p' throws an exception?
> > That might cause problems. Or maybe not, but it would require
> > some analysis that can be avoided with 'mkdir-p/perms'.
> Hm, but i still have to set umask to prevent TOCTOU, the
> implementation of 'mkdir-p/perms' does not take care of that.
mkdir-p/perms could be modified to take care of that.
If that is done, then other users of mkdir-p/perms would benefit as
well.
To implement this, I recommend using the prodecures from
<https://lists.gnu.org/archive/html/guile-devel/2021-11/msg00005.html>
-- that patch was written to remove the TOCTOU!
Greetings,
Maxime.
signature.asc
Description: This is a digitally signed message part
- [bug#54309] What is the process from here?, (continued)
- [bug#54309] What is the process from here?, Liliana Marie Prikler, 2022/03/18
- [bug#54309] What is the process from here?, fesoj000, 2022/03/18
- [bug#54309] What is the process from here?, Liliana Marie Prikler, 2022/03/18
- [bug#54309] What is the process from here?, fesoj000, 2022/03/19
- [bug#54309] What is the process from here?, Maxime Devos, 2022/03/19
- [bug#54309] What is the process from here?, fesoj000, 2022/03/22
- [bug#54309] What is the process from here?, Liliana Marie Prikler, 2022/03/22
[bug#54309] [PATCH] services: auditd: use exclusive log directory for auditd, fesoj000, 2022/03/19
[bug#54309] [PATCHv2] services: auditd: use exclusive log directory for auditd, fesoj000, 2022/03/23
[bug#54309] [PATCHv3] services: auditd: use exclusive log directory for auditd, fesoj000, 2022/03/23