[issue12015] possible characters in temporary file name is too few
Nick Coghlan
report at bugs.python.org
Mon May 9 19:06:37 CEST 2011
Nick Coghlan <ncoghlan at gmail.com> added the comment:
Oh, you mean the security risk if the temporary names can be guessed? My recollection is that it is more of a problem for temporary directories than it is for temporary files, since the module can't control how files inside a temp directory get created. It's been a long time since I read anything detailed on the threat models and attack scenarios mkstemp() and friends were designed to handle though, so Google may be a better source of answers on that front.
----------
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue12015>
_______________________________________
More information about the Python-bugs-list
mailing list