diff options
| author | Georg Brandl <georg@python.org> | 2005-07-17 21:10:07 (GMT) |
|---|---|---|
| committer | Georg Brandl <georg@python.org> | 2005-07-17 21:10:07 (GMT) |
| commit | 9e9452fda01c281dda609895e370cc97b4cdb046 (patch) | |
| tree | a69e2b3e9dd41c26e7d03c2ace466dec32362060 | |
| parent | 6912a6ca6aedfd7809b1315d1f7cd9c4a1e59c18 (diff) | |
| download | cpython-9e9452fda01c281dda609895e370cc97b4cdb046.zip cpython-9e9452fda01c281dda609895e370cc97b4cdb046.tar.gz cpython-9e9452fda01c281dda609895e370cc97b4cdb046.tar.bz2 | |
bug [ 872769 ] os.access() documentation should stress race conditions
| -rw-r--r-- | Doc/lib/libos.tex | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/Doc/lib/libos.tex b/Doc/lib/libos.tex index b570363..46764b2 100644 --- a/Doc/lib/libos.tex +++ b/Doc/lib/libos.tex @@ -667,6 +667,11 @@ test permissions. Return \constant{True} if access is allowed, \constant{False} if not. See the \UNIX{} man page \manpage{access}{2} for more information. Availability: Macintosh, \UNIX, Windows. + +\note{Using \function{access()} to check if a user is authorized to e.g. +open a file before actually doing so using \function{open()} creates a +security hole, because the user might exploit the short time interval +between checking and opening the file to manipulate it.} \end{funcdesc} \begin{datadesc}{F_OK} |