• Open Menu Close Menu
  • Apple
  • Shopping Bag
  • Apple
  • Mac
  • iPad
  • iPhone
  • Watch
  • TV
  • Music
  • Support
  • Search apple.com
  • Shopping Bag

Lists

Open Menu Close Menu
  • Terms and Conditions
  • Lists hosted on this site
  • Email the Postmaster
  • Tips for posting to public mailing lists
Re: Using Zip executable in Cocoa Application
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Using Zip executable in Cocoa Application

  • Subject: Re: Using Zip executable in Cocoa Application
  • From: Rick Langschultz <email@hidden>
  • Date: Sun, 18 Dec 2005 08:02:07 -0600
Thank you for the response, I have to tell you that there has been much personal debate about this also. I have come to the realization that I will have a folder located within the Applications suites folder with users information in it. Much like the way Shared Applications or whatever is located in Microsoft Office's Application folder. Maybe even a dmg with 128AES encryption.
This way the files aren't deleted if the operating system is halted or interrupts.

On Dec 17, 2005, at 12:23 PM, John Stiles wrote:

/tmp or /private/var/tmp isn't a really great place for saving things in general. It's all thrown out when you restart (or maybe when you log in; I forget which).
At any rate, I don't think we should be making assumptions about how this code will work. We don't know if the data he's zipping is the user's data; we don't know if the ZIP file's got a password on it; we don't know if he deletes it when he's done; etc. Let's not rush to find fault.


Uli Kusterer wrote:

Am 17.12.2005 um 15:38 schrieb Shaun Wexler:

That won't return @"/tmp"; it's something like @"/private/var/ tmp/ folders.501/TemporaryItems", but more-or-less guaranteed to be world-writable (on a writable file system).


Nice security hole waiting to be explored. Zip some important files of the user's and save them there, and any other user can read them... Sweeeet...

Cheers,
-- M. Uli Kusterer
http://www.zathras.de


_______________________________________________
Do not post admin requests to the list. They will be ignored.
Cocoa-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
40blizzard.com

This email sent to email@hidden

_______________________________________________
Do not post admin requests to the list. They will be ignored.
Cocoa-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
40cox.net

This email sent to email@hidden

_______________________________________________
Do not post admin requests to the list. They will be ignored.
Cocoa-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:

This email sent to email@hidden
  • Follow-Ups:
    • Re: Using Zip executable in Cocoa Application
      • From: Ondra Cada <email@hidden>
    • Re: Using Zip executable in Cocoa Application
      • From: "a.d. jensen" <email@hidden>
References: 
 >Using Zip executable in Cocoa Application (From: Rick Langschultz <email@hidden>)
 >Re: Using Zip executable in Cocoa Application (From: Markus Hitter <email@hidden>)
 >Re: Using Zip executable in Cocoa Application (From: j o a r <email@hidden>)
 >Re: Using Zip executable in Cocoa Application (From: Shaun Wexler <email@hidden>)
 >Re: Using Zip executable in Cocoa Application (From: Uli Kusterer <email@hidden>)
 >Re: Using Zip executable in Cocoa Application (From: John Stiles <email@hidden>)

  • Prev by Date: Re: Using Zip executable in Cocoa Application
  • Next by Date: How To Save & Restore the NSTextView String.
  • Previous by thread: Re: Using Zip executable in Cocoa Application
  • Next by thread: Re: Using Zip executable in Cocoa Application
  • Index(es):
    • Date
    • Thread