[Philadelphia-pm] Fall Season: Unix Race Conditions

Brian Duggan bduggan at matatu.org
Wed Aug 23 13:24:39 PDT 2017


Hi All,

Jim Keenan has volunteered to kick off the fall season of phl.pm
on September 11 with this talk:

         Security Implications of "Time of Check to Time of Use"
                     for Widely Used Perl Code

Programming in Unix environments is vulnerable to security problems when
something can happen between the time the status of a filesystem entry
is checked and a system call changing the status of that entity is made.
Perl code can be written to minimize this vulnerability, but one widely
used Perl function, "File::Path::rmtree()", fails to do so when used in
its default format.  The latest version of this function is safer but
will cause some Perl code in production to function differently from the
way it has since 1997.

More details (location/time) are on the meetup page.

    https://www.meetup.com/Philadelphia-Perl-Mongers/

Hope folks can make it!

Brian


More information about the Philadelphia-pm mailing list