Akim Demaille <[EMAIL PROTECTED]> writes:
> Would doing something like
> tmp=/tmp/ac.${RANDOM-$$}
> be good? The intend is to use the randomness some shell support, but is
> it possible to imagine that the script is run by a nasty guy who
> precisely set a well known value to RANDOM?
> I suppose we don't care, since that would mean she already has pretty
> much the machine under control :)
Yeah, plus you don't need to defend against the person running the script
anyway. Sure, that would definitely be an improvement on any host with a
shell that has $RANDOM support, and shouldn't be any worse on hosts
without it. (Unless the user has RANDOM set to something predictable for
some other reason, but that seems quite unlikely to me.)
--
Russ Allbery ([EMAIL PROTECTED]) <http://www.eyrie.org/~eagle/>
