On 28/04/2009 16:51, "Stephen J. Butler" <stephen.but...@gmail.com> wrote:
> On Tue, Apr 28, 2009 at 10:18 AM, Erik Buck <erik.b...@sbcglobal.net> wrote: > >> Don't hard code paths! Use NSHomeDirectory() or NSTemporaryDirectory() or >> NSSearchPathForDirectoriesInDomains(). > > Not only that, but hardcoding filenames in tmp directories is > generally considered a security bug. You should be using mktemp or one > of its ilk. Not sure if there's a Cocoa API for that. It's not only a security bug but a buggy bug. If you see what I mean :-). What happens if two users are fast-user-switching on the same box? Both apps are using the same temporary data... Cheers, Graham. -- Graham Lee Senior Mac Software Engineer tel: +44 1235 540266 SOPHOS - simply secure Sophos Plc, The Pentagon, Abingdon Science Park, Abingdon, OX14 3YP, United Kingdom. Company Reg No 2096520. VAT Reg No GB 348 3873 20. _______________________________________________ Cocoa-dev mailing list (Cocoa-dev@lists.apple.com) Please do not post admin requests or moderator comments to the list. Contact the moderators at cocoa-dev-admins(at)lists.apple.com Help/Unsubscribe/Update your Subscription: http://lists.apple.com/mailman/options/cocoa-dev/archive%40mail-archive.com This email sent to arch...@mail-archive.com
