Lists

Terms and Conditions
Lists hosted on this site
Email the Postmaster
Tips for posting to public mailing lists

Re: Authorization Question (Possibly a simple POSIX question?)

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Authorization Question (Possibly a simple POSIX question?)

Subject: Re: Authorization Question (Possibly a simple POSIX question?)
From: Seth Willits <email@hidden>
Date: Fri, 21 Aug 2009 12:12:03 -0700

The second bit of information is that permissions are tested at the time of the open(). Once you have the file descriptor, you can use it without further checks.

That's the bit that confuses me, because it seems to be a security gap. It sounds like I could just spawn an application which reads from every single file descriptor from 1 on up. If any other process opened a protected file then my app could read its data without any security check at all? That doesn't seem right.


--
Seth Willits

_______________________________________________

Cocoa-dev mailing list (email@hidden)

Please do not post admin requests or moderator comments to the list.
Contact the moderators at cocoa-dev-admins(at)lists.apple.com

Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden

Follow-Ups:

Re: Authorization Question (Possibly a simple POSIX question?)
From: "Stephen J. Butler" <email@hidden>
Re: Authorization Question (Possibly a simple POSIX question?)
From: "Stephen J. Butler" <email@hidden>

References:  
  >Authorization Question (Possibly a simple POSIX question?) (From: Seth Willits <email@hidden>)
  >Re: Authorization Question (Possibly a simple POSIX question?) (From: Ken Thomases <email@hidden>)

Prev by Date:
Re: Treat warnings as errors flag missing in iPhone Xcode project

Next by Date:
Re: Editable NSTextFieldCell with clickable button?

Previous by thread:
Re: Authorization Question (Possibly a simple POSIX question?)

Next by thread:
Re: Authorization Question (Possibly a simple POSIX question?)

Index(es):

Date
Thread