Bug#249305: Debian-installer, beta-4

To: Mika Bostr|m <bostik@lut.fi>, 249305@bugs.debian.org
Cc: Joey Hess <joeyh@debian.org>
Subject: Bug#249305: Debian-installer, beta-4
From: Bastian Blank <waldi@debian.org>
Date: Sun, 16 May 2004 21:50:36 +0200
Message-id: <[🔎] 20040516195036.GA4855@wavehammer.waldi.eu.org>
Reply-to: Bastian Blank <waldi@debian.org>, 249305@bugs.debian.org
In-reply-to: <[🔎] 20040516192605.GC21569@jumi.lut.fi>
References: <[🔎] 20040516161154.GA21569@jumi.lut.fi> <[🔎] 20040516183312.GD3673@kitenet.net> <[🔎] 20040516192605.GC21569@jumi.lut.fi>

On Sun, May 16, 2004 at 10:26:05PM +0300, Mika Bostr|m wrote:
> > There is absolutely no security benefit to noexec /tmp whatsoever.
> 
>   I know. It's trivial to call binaries through /lib/ld-linux.so and
> scripts via the actual shell. Any kind of attacker would circumvent the
> flag in about two seconds.

Not longer, the kernel denies exec mapings of files on noexec fs.

Bastian

-- 
There's coffee in that nebula!
		-- Capt. Kathryn Janeway, Star Trek: Voyager, "The Cloud"

Attachment: signature.asc
Description: Digital signature

Reply to:

References:
- Bug#249305: Debian-installer, beta-4
  - From: Mika Bostrom <bostik@lut.fi>
- Bug#249305: Debian-installer, beta-4
  - From: Joey Hess <joeyh@debian.org>
- Bug#249305: Debian-installer, beta-4
  - From: Mika Bostr|m <bostik@lut.fi>

Prev by Date: Bug#249313: debian-installer report
Next by Date: Bug#249305: Debian-installer, beta-4
Previous by thread: Bug#249305: Debian-installer, beta-4
Next by thread: anna_0.060_i386.changes ACCEPTED
Index(es):
- Date
- Thread