Re: Comments on draft-ietf-secsh-filexfer-05.txt

To: Joseph Galbraith <galb-list%vandyke.com@localhost>, ietf-ssh%netbsd.org@localhost
Subject: Re: Comments on draft-ietf-secsh-filexfer-05.txt
From: Damien Miller <djm%mindrot.org@localhost>
Date: Tue, 23 Mar 2004 09:16:26 +1100

Another comment/query on the filexfer draft:

I think that SSH_FXP_OPEN should support a flag to stop it from
following symlinks, like O_NOFOLLOW on some Unices.

Without something like this, I believe that SSH_FXP_FSTAT isn't very
useful as a race-free means to collect attributes. One could end up
following a symlink unless one checks it first - which opens another race.

Even using the hypothetical nofollow isn't entirely race-free, but it
enables a server to not chase symlinks (e.g. to /dev/st0) if it doesn't
want to.

-d

Follow-Ups:
- Re: Comments on draft-ietf-secsh-filexfer-05.txt
  - From: Joseph Galbraith
- Re: Comments on draft-ietf-secsh-filexfer-05.txt
  - From: David Wagner

References:
- Re: Comments on draft-ietf-secsh-filexfer-05.txt
  - From: Joseph Galbraith

Prev by Date: Re: Comments on draft-ietf-secsh-filexfer-05.txt
Next by Date: Re: Comments on draft-ietf-secsh-filexfer-05.txt
Previous by Thread: Re: Comments on draft-ietf-secsh-filexfer-05.txt
Next by Thread: Re: Comments on draft-ietf-secsh-filexfer-05.txt
Indexes:

Home | Main Index | Thread Index | Old Index