Executable /lib/ld-linux.so breaks noexec

To: debian-devel@lists.debian.org
Subject: Executable /lib/ld-linux.so breaks noexec
From: Martin Pitt <martin@piware.de>
Date: Tue, 20 May 2003 17:45:21 +0200
Message-id: <[🔎] 20030520154520.GA18973@web08.manitu.net>

Hi!

Is there any particular reason to have /lib/ld-linux.so.* exxecutable?
If it is used only as a proper library, it need not be executable.

The problem is that this breaks the "noexec" mount option. If /foo is
mounted noexec, then one cannot do /foo/myprog, but 

/lib/ld-linux.so.1 /foo/myprog

will work.

This prevents proper separation of executable and writable files, thus
I consider this as a security hole.

Any comments to this?

Thanks in advance,

Martin
-- 
Martin Pitt 
home:  www.piware.de
eMail: martin@piware.de

Reply to:

Follow-Ups:
- Re: Executable /lib/ld-linux.so breaks noexec
  - From: Matt Zimmerman <mdz@debian.org>
- Re: Executable /lib/ld-linux.so breaks noexec
  - From: Matthew Garrett <mgarrett@chiark.greenend.org.uk>
- Re: Executable /lib/ld-linux.so breaks noexec
  - From: Emile van Bergen <emile-deb@evbergen.xs4all.nl>
- Re: Executable /lib/ld-linux.so breaks noexec
  - From: Russell Coker <russell@coker.com.au>

Prev by Date: Thanks
Next by Date: Re: Daft Internet Stuff [Re: Returning from "vacation". (MIA?)]
Previous by thread: Thanks
Next by thread: Re: Executable /lib/ld-linux.so breaks noexec
Index(es):
- Date
- Thread