[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Bug#278283: insecure temporary file usage in gettextize and autopoin
Re: Bug#278283: insecure temporary file usage in gettextize and autopoint (fwd)
Tue, 26 Oct 2004 10:16:16 -0400 (EDT)
On Tue, 26 Oct 2004, Thomas Dickey wrote:
(sorry about the previous - missed keystroke)
> > Not bad, but still not perfect: mktemp is not a POSIX standardized
> > utility, and $RANDOM is bash specific. So what do you propose on POSIX
> > systems without mktemp and bash? Just fall back on the unsecure foo$$
> > pattern? Or ship an mktemp.c with the package, to be compiled by
> > 'configure' very early?
As long as your readers continue to have no interest in POSIX or
portability to anything except Linux and kindred, you have no problem.
Thomas E. Dickey