Do not give write access to others
このページは日本語には対応しておりません。随時翻訳に取り組んでいます。
翻訳に関してご質問やご意見ございましたら、
お気軽にご連絡ください。
ID: java-security/files-permissions
Language: Java
Severity: Warning
Category: Security
CWE: 732
Description
Never give write access to other users.
Learn More
Non-Compliant Code Examples
class Main {
public test() {
Set<PosixFilePermission> perms = new HashSet<PosixFilePermission>();
perms.add(PosixFilePermission.OWNER_READ);
perms.add(PosixFilePermission.OWNER_WRITE);
perms.add(PosixFilePermission.OWNER_EXECUTE);
perms.add(PosixFilePermission.GROUP_READ);
perms.add(PosixFilePermission.GROUP_EXECUTE);
perms.add(PosixFilePermission.OTHERS_READ);
perms.add(PosixFilePermission.OTHERS_EXECUTE);
}
}
class Main {
public static void main(String[] args) {
Files.setPosixFilePermissions("file", PosixFilePermissions.fromString("rw-rw-rw-"));
}
}
Compliant Code Examples
class Main {
public static void main(String[] args) {
Files.setPosixFilePermissions("file", PosixFilePermissions.fromString("rw-rw-r--"));
}
}
Seamless integrations. Try Datadog Code Analysis