From: "Joseph D. Wagner" <theman@josephdwagner.info>
To: "'Jamie Lokier'" <jamie@shareable.org>
Cc: "'maximilian attems'" <janitor@sternwelten.at>,
<linux-fsdevel@vger.kernel.org>
Subject: RE: Does sendfile() copy extended attributes?
Date: Sun, 21 Dec 2003 13:31:53 -0600 [thread overview]
Message-ID: <000001c3c7f9$16e052d0$0201a8c0@joe> (raw)
In-Reply-To: <20031221115028.GG3438@mail.shareable.org>
> I think you read what I wrote the wrong way. Let me rephrase it:
> How can you know that function does not call an external program to
> perform its action?
Again, sendfile() is a KERNEL function.
> There actually are a few functions in the C library which work by
> calling external programs - grantpt is one I think - and it's not
> mentioned in the manual page (because it's an implementation detail).
>
> Actually I agree with you that calling external programs is a big
> risk. It should be done carefully in security conscious code.
> However you are deluded to imagine that calling functions in the C
> library is automatically safe from the those risks. That must be done
> carefully as well.
Thanks for the heads up. But a library function is at least SAFER -- not totally SAFE but SAFER than an external program -- right?
I view security as a process, not an end result. Minimizing the risk, not eliminating the risk altogether, is my goal; hence, the question about a library function call being safer than an external program.
Joseph D. Wagner
next prev parent reply other threads:[~2003-12-21 19:31 UTC|newest]
Thread overview: 18+ messages / expand[flat|nested] mbox.gz Atom feed top
2003-12-14 17:39 Does sendfile() copy extended attributes? Joseph D. Wagner
2003-12-15 5:43 ` Shaya Potter
2003-12-15 5:46 ` Jeff Garzik
2003-12-15 5:49 ` Shaya Potter
2003-12-15 5:55 ` Jeff Garzik
2003-12-15 5:59 ` Shaya Potter
2003-12-15 17:16 ` Bryan Henderson
2003-12-15 20:15 ` Joseph D. Wagner
2003-12-15 21:28 ` Jamie Lokier
2003-12-16 4:28 ` Joseph D. Wagner
2003-12-19 16:37 ` maximilian attems
2003-12-20 12:19 ` Joseph D. Wagner
2003-12-20 20:40 ` Jamie Lokier
2003-12-21 11:01 ` Joseph D. Wagner
2003-12-21 11:50 ` Jamie Lokier
2003-12-21 19:31 ` Joseph D. Wagner [this message]
2003-12-21 19:44 ` Shaya Potter
2003-12-21 19:51 ` Jamie Lokier
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to='000001c3c7f9$16e052d0$0201a8c0@joe' \
--to=theman@josephdwagner.info \
--cc=jamie@shareable.org \
--cc=janitor@sternwelten.at \
--cc=linux-fsdevel@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.