[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: NSTemporaryDirectory() and security

Subject: Re: NSTemporaryDirectory() and security
From: "stephen joseph butler" <email@hidden>
Date: Tue, 1 May 2007 13:26:14 -0500
Delivered-to: email@hidden
Delivered-to: email@hidden
Dkim-signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=L6t+/5RY8xalqILGaQ6N8USBwlp2EQghwyLCbIpMP1B7I/OPaiWNW5D/b4+4fK2MHnI0dAkI0wK62uNsku3s0RPoEc2nZdXLqA2DYokX475p9Ke1dcDixCMWOjWLLyMSdC7U9IilMpbKBJMSovRZW2VH2cMmknJxyyw/zz4cXIM=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=rUSN3elbC4gHTjjdanYYdHcMVPxGWPQgGBWRjMcJB+W7CDOT0u8fZ1Be0lQrLCVwDG3ATJcMwjxyg8jvPBNKGjc9BdjKK+7ABwBcvQttDAwUM5b+MkDsTXxMy5O+W5e6yjh6JC9TnaRxk8nu86yMgqCYJ3kVlp6/s9LoyMscycs=

On 5/1/07, stephen joseph butler <email@hidden> wrote:

On 5/1/07, Jaime Magiera <email@hidden> wrote:
> However, there is a security issue, in the eyes of some, that writing
> to /tmp is bad. So, they have it cordoned off on their systems.
> Another issue would be if a user was rendering content that they
> didn't want other users (such as those logged via SSH) to see.
>
> What are the options/suggestions for tmp file writing that is secure
> but also follows Apple's guidelines? What are other folks doing?

As far as I know, mkstemp() is what you're supposed to use (man 3
mkstemp). You can take the returned FD and wrap it in an NSFileHandle
for convenience.


Actually, here's a quick category that should work (untested):

#include <unistd.h>
#import <Foundation/Foundation.h>

@interface NSFileHandle (NSFileHandleSecureTemp)

+ (NSFileHandle*) fileHandleWithTemporaryFile:(NSString*)template;

@end

@implementation NSFileHandle (NSFileHandleSecureTemp)

+ (NSFileHandle*) fileHandleWithTemporaryFile:(NSString*)template
{
 char * cTemplate = NULL;
 int fd = -1;
 NSFileHandle *rv = nil;

 NSParameterAssert( template != nil );

 cTemplate = strdup( [template fileSystemRepresentation] );
 fd = mkstemp( cTemplate );
 free( cTemplate ); cTemplate = NULL;

 if (fd != -1)
   rv = [[[NSFileHandle alloc] initWithFileDescriptor:fd
closeOnDealloc:YES] autorelease];

 return rv;
}
_______________________________________________

Cocoa-dev mailing list (email@hidden)

Do not post admin requests or moderator comments to the list.
Contact the moderators at cocoa-dev-admins(at)lists.apple.com

Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/cocoa-dev/email@hidden

This email sent to email@hidden

References:
	>NSTemporaryDirectory() and security (From: Jaime Magiera <email@hidden>)
	>Re: NSTemporaryDirectory() and security (From: "stephen joseph butler" <email@hidden>)

Prev by Date: Re: NSTemporaryDirectory() and security
Next by Date: Re: NSTemporaryDirectory() and security
Previous by thread: Re: NSTemporaryDirectory() and security
Next by thread: Re: NSTemporaryDirectory() and security
Index(es):
- Date
- Thread

Home