=================================================================== RCS file: /cvsrepo/anoncvs/cvs/www/Attic/porting.html,v retrieving revision 1.17 retrieving revision 1.18 diff -u -r1.17 -r1.18 --- www/Attic/porting.html 1999/01/31 23:29:28 1.17 +++ www/Attic/porting.html 1999/02/08 13:59:20 1.18 @@ -104,7 +104,7 @@
fopen
and freopen
create a new file or open an existing file for
writing. An attacker may create a symbolic link from
- /etc/paswd
to /tmp/addrpool_dump
. The
+ /etc/passwd
to /tmp/addrpool_dump
. The
instant you open it, your password file is hosed. Yes, even with
an unlink
right before. You only narrow the window
of opportunity. Use open
with
@@ -341,6 +341,6 @@