Revision as of 21:06, 14 January 2019 edit RoySmith (talk \| contribs) Autopatrolled, Checkusers, Administrators 97,012 edits →top: Remove pronounciation. I can't find any WP:RS for this. All the sources I did find appear to be simply quoting wikipedia. Tag: Visual edit ← Previous edit		Revision as of 21:15, 14 January 2019 edit undo RoySmith (talk \| contribs) Autopatrolled, Checkusers, Administrators 97,012 edits →top: Cite for file system, but don't say "most" Tag: Visual edit Next edit →
Line 3: A simple example is as follows: Consider a Web application that allows a user to edit pages, and also allows administrators to lock pages to prevent editing. A user requests to edit a page, getting a form which can be used to alter its content. Before the user submits the form, an administrator locks the page, which should prevent editing. However, since editing has already begun, when the user submits the form, those edits (which have already been made) are accepted. When the user began editing, the appropriate authorization was ''checked'', and the user was indeed allowed to edit. However, the authorization was ''used'' later, at a time when edits should no longer have been allowed. TOCTOU race conditions are ~~most~~ common in [[Unix]] between operations on the [[File system#Metadata\|file system]], <ref>{{Cite web\|url=https://www.usenix.org/conference/fast-05/tocttou-vulnerabilities-unix-style-file-systems-anatomical-study\|title=TOCTTOU Vulnerabilities in UNIX-Style File Systems: An Anatomical Study\|last=Wei\|first=Jinpeng\|last2=Pu\|first2=Calton\|date=\|website=www.usenix.org\|archive-date=\|dead-url=\|access-date=2019-01-14}}</ref>but can occur in other contexts, including local [[Unix ___domain socket\|sockets]] and improper use of [[database transaction]]s. In the early 1990s, the mail utility of BSD 4.3 UNIX had an [[Exploit (computer security)\|exploitable]] race condition for temporary files because it used the [[C_standard_library#Threading_problems,_vulnerability_to_race_conditions\|mktemp() C library function]].<ref>{{cite web \|author=Shangde Zhou(周尚德) \|date=1991-10-01 \|title=A Security Loophole in Unix \|url=http://cdblp.cn/paper/UNIX%E7%9A%84%E4%B8%80%E4%B8%AA%E6%BC%8F%E6%B4%9E/94334.html \|deadurl=yes \|archiveurl=https://archive.is/20130116041403/http://cdblp.cn/paper/UNIX%E7%9A%84%E4%B8%80%E4%B8%AA%E6%BC%8F%E6%B4%9E/94334.html \|archivedate=2013-01-16 \|df= }}</ref> Early versions of [[OpenSSH]] had an exploitable race condition for [[Unix ___domain sockets]].<ref>{{cite web \|last=Acheson \|first=Steve \|date=1999-11-04 \|title=The Secure Shell (SSH) Frequently Asked Questions \|url=http://www.employees.org/~satch/ssh/faq/TheWholeSSHFAQ.html \|deadurl=yes \|archiveurl=https://web.archive.org/web/20170213004928/http://www.employees.org/~satch/ssh/faq/TheWholeSSHFAQ.html \|archivedate=2017-02-13 \|df= }}</ref>

Time-of-check to time-of-use: Difference between revisions