Path: utzoo!utgpu!news-server.csri.toronto.edu!cs.utexas.edu!uunet!mcsun!ukc!tcdcs!dce.ie!ch
From: ch@dce.ie (Charles Bryant)
Newsgroups: comp.lang.c
Subject: Re: freopen(), access()
Message-ID: <1991Feb1.125713.14842@dce.ie>
Date: 1 Feb 91 12:57:13 GMT
References: <YANG.91Jan23145507@newyork.nff.ncl.omron.co.jp> <14944@smoke.brl.mil>
Organization: Datacode Communications Ltd, Dublin, Ireland
Lines: 12

In article <14944@smoke.brl.mil> gwyn@smoke.brl.mil (Doug Gwyn) writes:
>I suspect that whatever code is using access() already has a bug, since
>access() rarely does what any sensible application would want it to do.
>(This is a design deficiency in the semantics for access().)

Is this bug that the programs use it when checking effective UID access,
or that they are setuid programs which have a window between checking
permissions and opening the file in which the file could be switched?
-- 
Charles Bryant (ch@dce.ie)
--
/usr/ch/.signature: Block device required