[openstack-dev] creating a default for oslo config variables within a project?
Julien Danjou
julien at danjou.info
Thu Dec 5 09:22:00 UTC 2013
On Wed, Dec 04 2013, Sean Dague wrote:
> Honestly, I'd love us to be clever and figure out a not dangerous way
> through this, even if unwise (where we can yell at the user in the LOGs
> loudly, and fail them in J if lock_dir=/tmp) that lets us progress
> through this while gracefully bringing configs into line.
Correct me if I'm wrong, but I think the correct way to deal with that
security problem is to use an atomic operation using open(2) with:
open(pathname, O_CREAT | O_EXCL)
or mkstemp(3).
That should be doable in Python too.
--
Julien Danjou
# Free Software hacker # independent consultant
# http://julien.danjou.info
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 835 bytes
Desc: not available
URL: <http://lists.openstack.org/pipermail/openstack-dev/attachments/20131205/ecb9eaab/attachment.pgp>
More information about the OpenStack-dev
mailing list