From: "Joseph D. Wagner" <theman@josephdwagner.info>
To: "'John Newbigin'" <jn@it.swin.edu.au>,
<viro@parcelfarce.linux.theplanet.co.uk>
Cc: "'Guy'" <bugzilla@watkins-home.com>, "'Jan Hudec'" <bulb@ucw.cz>,
"'Bryan Henderson'" <hbryan@us.ibm.com>,
<linux-fsdevel@vger.kernel.org>
Subject: RE: RFC: Illegal Characters in File Names
Date: Tue, 20 Jul 2004 22:26:25 -0500 [thread overview]
Message-ID: <S266522AbUGUD0f/20040721032635Z+698@vger.kernel.org> (raw)
In-Reply-To: <40FDB035.1050000@it.swin.edu.au>
>> Mind showing the sequence that would achieve that?
> http://www.kb.cert.org/vuls/id/230561
> http://www.digitaldefense.net/labs/papers/Termulation.txt
> Read this page ^^^^ !!!!
>
> These are poor protocols which were not designed for security :(
>
> It is a real problem. The solution is to fix the terminal though, not
> the filesystem.
The problem with fixing only the terminal is that there's more than one program that can be used for accessing a file name. By your logic, we should also "fix" every single program that can access a file name.
I think it should be fixed in both places.
To use an analogy, I want to put a deadbolt on a door, but you don't want me to because the door is already locked. Sure, the door is locked, but we'd all be better off if it had a deadbolt, too.
Joseph D. Wagner
next prev parent reply other threads:[~2004-07-21 3:26 UTC|newest]
Thread overview: 68+ messages / expand[flat|nested] mbox.gz Atom feed top
2004-07-19 0:41 RFC: Illegal Characters in File Names Joseph Wagner
2004-07-19 8:47 ` Jan Hudec
2004-07-19 19:21 ` Joseph D. Wagner
2004-07-19 20:08 ` Pat LaVarre
2004-07-19 20:54 ` Joseph D. Wagner
2004-07-20 6:33 ` Jan-Benedict Glaw
2004-07-20 16:25 ` Joseph D. Wagner
2004-07-20 20:42 ` Stephen Rothwell
[not found] ` <20040720162549.857014B7E7@dvmwest.gt.owl.de>
2004-07-20 16:52 ` Jan-Benedict Glaw
[not found] ` <20040719192145.50750578E5@jabberwock.ucw.cz>
2004-07-19 21:01 ` Jan Hudec
2004-07-20 16:40 ` Bryan Henderson
2004-07-20 16:54 ` Guy
2004-07-20 18:10 ` viro
2004-07-20 20:44 ` Guy
2004-07-20 21:27 ` Matthew Wilcox
2004-07-20 21:37 ` Jan Hudec
2004-07-20 21:40 ` Matthew Wilcox
2004-07-20 21:45 ` Jan Hudec
2004-07-20 21:49 ` Guy
2004-07-20 22:04 ` Jan Hudec
2004-07-20 22:11 ` Paul Stewart
2004-07-20 22:16 ` Joseph D. Wagner
2004-07-21 12:26 ` Jan-Benedict Glaw
2004-07-21 15:28 ` Guy
2004-07-21 16:25 ` Jan-Benedict Glaw
2004-07-21 12:24 ` Jan-Benedict Glaw
2004-07-20 21:41 ` Bryan Henderson
2004-07-21 12:21 ` Jan-Benedict Glaw
2004-07-21 15:25 ` Guy
2004-07-22 18:04 ` Matthew Wilcox
2004-07-22 18:35 ` Guy
2004-07-20 20:57 ` Jan Hudec
2004-07-20 21:09 ` Guy
2004-07-20 21:36 ` Jan Hudec
2004-07-20 22:13 ` viro
2004-07-20 22:44 ` Jan Hudec
2004-07-20 22:51 ` viro
2004-07-20 23:30 ` Guy
2004-07-21 20:25 ` Bryan Henderson
2004-07-22 3:17 ` John Newbigin
2004-07-22 3:24 ` Matthew Wilcox
2004-07-22 6:01 ` viro
2004-07-22 22:12 ` Bryan Henderson
2004-07-22 14:51 ` Jan-Benedict Glaw
2004-07-22 22:44 ` Bryan Henderson
2004-07-22 22:47 ` Jan Hudec
2004-07-23 18:10 ` Bryan Henderson
2004-07-20 23:52 ` John Newbigin
2004-07-21 3:26 ` Joseph D. Wagner [this message]
2004-07-21 4:15 ` viro
2004-07-21 5:03 ` Guy
2004-07-21 12:28 ` Jan-Benedict Glaw
2004-07-21 15:30 ` Guy
2004-07-21 16:26 ` Jan-Benedict Glaw
2004-07-21 16:33 ` Jan Hudec
2004-07-21 16:41 ` Guy
2004-07-21 17:01 ` Jan Hudec
2004-07-20 22:16 ` Joseph D. Wagner
2004-07-21 12:43 ` Jan-Benedict Glaw
2004-07-20 22:31 ` viro
2004-07-20 18:27 ` Bryan Henderson
2004-07-19 9:26 ` Matthew Wilcox
2004-07-19 19:21 ` Joseph D. Wagner
[not found] ` <E1BmdhG-0004NG-00@master.debian.org>
2004-07-20 2:43 ` Matthew Wilcox
2004-07-20 3:16 ` Joseph D. Wagner
2004-07-20 8:45 ` Jan Hudec
2004-07-20 16:25 ` Joseph D. Wagner
2004-07-20 16:41 ` Guy
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=S266522AbUGUD0f/20040721032635Z+698@vger.kernel.org \
--to=theman@josephdwagner.info \
--cc=bugzilla@watkins-home.com \
--cc=bulb@ucw.cz \
--cc=hbryan@us.ibm.com \
--cc=jn@it.swin.edu.au \
--cc=linux-fsdevel@vger.kernel.org \
--cc=viro@parcelfarce.linux.theplanet.co.uk \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).