[Philadelphia-pm] Fall Season: Unix Race Conditions

Brian Duggan on 23 Aug 2017 13:24:56 -0700

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[Philadelphia-pm] Fall Season: Unix Race Conditions

From: Brian Duggan <bduggan@matatu.org>
To: philadelphia-pm@pm.org
Subject: [Philadelphia-pm] Fall Season: Unix Race Conditions
Date: Wed, 23 Aug 2017 16:24:39 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=sender:date:from:to:subject:message-id:mime-version :content-disposition:user-agent; bh=yzr4DeXuz/yU3QMQLVYOOgy1kdTRGlIMD99x8W68U98=; b=LELaL54BnqLCf1qM7f27onxXP5OYwbpWsJzNHPvnMadfi/oyuFk8T4EZFF2QJ92dAw o2Ud0U3Tzn0IQjQUe/NO2yB8+GQ8yl4CvqHojNxzZ3sjv9Mc09IFNfIJYfFze1lCiOmE IovzYARHWvO7ke3K6JCUwQsmHNiKZSGOZZtxPDF28rWe71niIwoWGxPznpMWuDBsj5XI REx8/6H+sNtIpEAP+HoFL06Ju3eXvyyLL2sbMb62WLWvcZYfTp9FSs09R27s24WKa491 Jg0FcxaxfGy+d7494VrW7A1TrlFR3H2a8w5PiPT6QCxB+/kvPZU9ye91pS4AeT1m3iyw v3wQ==
List-archive: <http://mail.pm.org/pipermail/philadelphia-pm/>
Sender: "Philadelphia-pm" <philadelphia-pm-bounces+historian=netisland.net@pm.org>
User-agent: Mutt/1.5.24 (2015-08-30)

Hi All,

Jim Keenan has volunteered to kick off the fall season of phl.pm
on September 11 with this talk:

         Security Implications of "Time of Check to Time of Use"
                     for Widely Used Perl Code

Programming in Unix environments is vulnerable to security problems when
something can happen between the time the status of a filesystem entry
is checked and a system call changing the status of that entity is made.
Perl code can be written to minimize this vulnerability, but one widely
used Perl function, "File::Path::rmtree()", fails to do so when used in
its default format.  The latest version of this function is safer but
will cause some Perl code in production to function differently from the
way it has since 1997.

More details (location/time) are on the meetup page.

    https://www.meetup.com/Philadelphia-Perl-Mongers/

Hope folks can make it!

Brian
_______________________________________________
Philadelphia-pm mailing list
Philadelphia-pm@pm.org
http://mail.pm.org/mailman/listinfo/philadelphia-pm

Prev by Date: Re: [Philadelphia-pm] Monday, July 10th
Next by Date: [Philadelphia-pm] Looking for a junior programmer
Previous by thread: Re: [Philadelphia-pm] Monday, July 10th
Next by thread: [Philadelphia-pm] Looking for a junior programmer
Index(es):
- Date
- Thread