|
|
|
|
|
|
by normie3000
685 days ago
|
|
|
Sadly I've barely been writing shell scripts for multiple decades, so needed to look this up. > If an attacker pre-creates the file with relaxed access permissions, then data stored in the temporary file by the application may be accessed, modified or corrupted by an attacker. https://owasp.org/www-community/vulnerabilities/Insecure_Tem... |
|
|
With that said, I definitely ill be looking out for this in the future.
[1] I have unintentionally protected against this by using unique names for my temp files.