On Wed, 2020-01-29 at 12:23 -0800, Moritz Mühlenhoff wrote: > Simon McVittie wrote: > > I think we have a fairly good picture of the costs that would be > > incurred from using alternatives: > > Plus in the case of opentmpfiles; a pile of security issues: systemd- > tmpfiles addresses a number of complex races using low level > primitives like openat() et al. or O_PATH, while opentmpfiles is > implemented in shell.
Do you mean that shell scripts cannot cannot handle such issues?? So C- code is safe by construction, do you really believe in that?