Executable /lib/ld-linux.so breaks noexec
Hi!
Is there any particular reason to have /lib/ld-linux.so.* exxecutable?
If it is used only as a proper library, it need not be executable.
The problem is that this breaks the "noexec" mount option. If /foo is
mounted noexec, then one cannot do /foo/myprog, but
/lib/ld-linux.so.1 /foo/myprog
will work.
This prevents proper separation of executable and writable files, thus
I consider this as a security hole.
Any comments to this?
Thanks in advance,
Martin
--
Martin Pitt
home: www.piware.de
eMail: martin@piware.de
Reply to: