Author larry
Recipients Arfrever, eric.araujo, ezio.melotti, georg.brandl, hynek, jcea, larry, loewis, mrts, ncoghlan, neologix, petri.lehtinen, pitrou, python-dev, rosslagerwall, schmir, tarek, teamnoir
Date 2012-06-28.12:01:42
SpamBayes Score -1.0
Marked as misclassified Yes
Message-id <1340884903.64.0.698523145315.issue4489@psf.upfronthosting.co.za>
In-reply-to
Content
I'm pretty busy right now, please open a ticket for listdir.

_rmtree_safe_fd could remove the directory just after the recursive step using the parent's dirfd.  Of course you'd also have to add a rmdir for the very-tippy-top after the original call in shutil.rmtree too.  But this would prevent the malicious user from even removing empty directories.
History
Date User Action Args
2012-06-28 12:01:43larrysetrecipients: + larry, loewis, georg.brandl, jcea, ncoghlan, pitrou, schmir, tarek, ezio.melotti, eric.araujo, Arfrever, mrts, neologix, teamnoir, rosslagerwall, python-dev, petri.lehtinen, hynek
2012-06-28 12:01:43larrysetmessageid: <1340884903.64.0.698523145315.issue4489@psf.upfronthosting.co.za>
2012-06-28 12:01:43larrylinkissue4489 messages
2012-06-28 12:01:42larrycreate