On Tue, 17 Aug 2004 at 12:58:34 +1000, Rob Chanter wrote: [...] > VINFO="/tmp/siginfo.`date +%H%M%S`" [...] > echo >> $VINFO [...] > FCINFO="/tmp/fcinfo.`date +%H%M%S`" [...] > echo "The ClamAV updater freshclam has failed for some reason." >>$FCINFO [...]
Such setup is vulnerable to "/tmp file race condition" (the filenames are very predictable). You'd better use files in a directory writable only by the user executing the scripts or use mktemp(1) to create unique filenames. You remove the files at the end of scripts, so having nice-looking names isn't needed anyway. -- Tomasz Papszun SysAdm @ TP S.A. Lodz, Poland | And it's only [EMAIL PROTECTED] http://www.lodz.tpsa.pl/iso/ | ones and zeros. [EMAIL PROTECTED] http://www.ClamAV.net/ A GPL virus scanner ------------------------------------------------------- SF.Net email is sponsored by Shop4tech.com-Lowest price on Blank Media 100pk Sonic DVD-R 4x for only $29 -100pk Sonic DVD+R for only $33 Save 50% off Retail on Ink & Toner - Free Shipping and Free Gift. http://www.shop4tech.com/z/Inkjet_Cartridges/9_108_r285 _______________________________________________ Clamav-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/clamav-users
