On Sat, Mar 24, 2007 at 09:31:58PM -0500, Ron Johnson wrote: > > Ah, you're deleting an open file! > > The app, then, that deletes an open file is poorly written. > On the contrary. It makes it so that the only way that someone can get to the file is by having cracked the kernel itself. That is, without the file descriptor, no other process can get to the data. For example, qemu does this. Lots of other programs do this as well for security. They open the file, immediately unlink it and then the only access is via the file descriptor.
Regards, -Roberto -- Roberto C. Sánchez http://people.connexer.com/~roberto http://www.connexer.com
signature.asc
Description: Digital signature
