Dies schrieb Paul Eggert ([email protected]): > On 04/19/2012 08:05 AM, Stefan Tomanek wrote: > > + if (ignore_failed_read_option || (errno == ENOENT && > > ignore_missing_option)) > > Why just ENOENT? Can't similar race conditions also > generate errno values like ELOOP, EACCESS, ENOTDIR?
I have not encountered those yet. But ENOENT is quite common, e.g. if "find" encounters a temporary file (editor swp file), which is removed before tar can archive it. > More generally, why use find + tar? The combination > seems inherently unsafe. An attacker with > write access to the file system could cause the combination > to archive the "wrong" file, for example. Because find has more possibilities to select a subset of files to save; I consider it a pretty common combination.
