From cb3b5ed48689e9dbd24089451839d0ad290b8a9e Mon Sep 17 00:00:00 2001
From: Jim Meyering <jim@meyering.net>
Date: Wed, 11 Mar 1998 11:54:11 +0000
Subject: (save_stdin): Open temporary file exclusively, to foil a common
 denial-of-service attack. From Paul Eggert.

---
 src/tac.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'src')

diff --git a/src/tac.c b/src/tac.c
index f55fb6ffb..fcd8e547c 100644
--- a/src/tac.c
+++ b/src/tac.c
@@ -418,7 +418,7 @@ save_stdin (FILE **g_tmp, char **g_tempfile)
   sprintf (template, "%s/tacXXXXXX", tempdir);
   tempfile = mktemp (template);
 
-  fd = creat (tempfile, 0600);
+  fd = open (tempfile, O_WRONLY | O_CREAT | O_TRUNC | O_EXCL, 0600);
   if (fd == -1 || (tmp = fdopen (fd, "rw")) == NULL)
     error (EXIT_FAILURE, errno, "%s", tempfile);
   tmp = fdopen (fd, "rw");
-- 
cgit v1.2.3-70-g09d2