[darcs-devel] [darcs #167] temp files in repo dir
David Roundy
droundy at abridgegame.org
Sat Jan 8 07:49:38 PST 2005
On Sat, Jan 08, 2005 at 10:19:16AM -0500, zooko at zooko.com via RT wrote:
> I have some repos that are read-only, and darcs.cgi can't display them
> properly because it doesn't have permission to create the temp files.
>
> I will adjust the permissions to allow that, but this exposes me more
> to attacks via the web server and darcs.cgi. I would rather that darcs
> would respect the TMPDIR (or whatever the unix standard is for that).
The catch here is that creating the temporaries in TMPDIR would mean we'd
have to be more careful with how we create them in order to avoid security
issues. I'd prefer to address this on a case-by-case basis if possible.
In a number of the cases where darcs creates temporary files, we may be
able to get by without them once ghc 6.4 comes around with its
System.Process library. We'd still have the old behavior for when compiled
with an older ghc.
Do you know which command is creating the temporary files and failing when
the repo is readonly?
I suppose I should also note that for *some* of the temporaries it creates,
darcs does use TMPDIR--perhaps we should be more consistent here. I think
the current behavior is to create temporary directories in TMPDIR, but
temporary files in the current directory.
--
David Roundy
http://www.darcs.net
More information about the darcs-devel
mailing list