David-Sarah Hopwood wrote: > Chimpy McSimian IV, Esq. wrote: >> Also, I think users *do* understand filesystems pretty well. > > They understand some subset of filesystem semantics, but most users > don't understand the edge cases. Also, many programmers don't understand > them, which leads them to write code that is insecure when these cases > occur (e.g. symlink race conditions).
I should add that it is rather difficult to write code that is secure against such attacks even if you *do* understand filesystem semantics. But if you don't, then there's no chance. -- David-Sarah Hopwood ⚥ http://davidsarah.livejournal.com
signature.asc
Description: OpenPGP digital signature
_______________________________________________ tahoe-dev mailing list [email protected] http://allmydata.org/cgi-bin/mailman/listinfo/tahoe-dev
