Re: /home as noexec and X

To: debian-devel@lists.debian.org
Subject: Re: /home as noexec and X
From: "Matus \"fantomas\" Uhlar" <uhlar@fantomas.sk>
Date: Fri, 11 Dec 1998 07:26:54 +0100
Message-id: <[🔎] 19981211072654.C18325@fantomas.sk>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 19981210153703.A3517@drow.res.cmu.edu>; from Daniel Jacobowitz on Thu, Dec 10, 1998 at 03:37:03PM -0500
References: <[🔎] 19981209115242.B5277@fantomas.sk> <[🔎] yttg1ap5lnx.fsf@gilgamesh.cse.ucsc.edu> <[🔎] 19981210044652.A31339@aleph.christen.net> <[🔎] 19981210133605.A12616@fantomas.sk> <[🔎] 19981210153703.A3517@drow.res.cmu.edu>

-> > -> Ship's Log, Lt. Ben Gertzfield, Stardate 091298.0823:
-> > -> > an sh script, but I totally agree; Debian should not require
-> > -> > ~/.xsession to be executable. I don't think any other Unixes do.
-> > -> 
-> > -> redhat does ...
-> > 
-> > probably exactly to be possible for user to decide what shell to use;
-> > 
-> > Hmmm i found another problem with dselect:
-> > 
-> > Removing idled ...
-> > dpkg (subprocess): unable to execute pre-removal script: Permission denied
-> > dpkg: error processing idled (--remove):
-> >  subprocess pre-removal script returned error exit status 2
-> > dpkg (subprocess): unable to execute post-installation script: Permission
-> > denieddpkg: error while cleaning up:
-> >  subprocess post-installation script returned error exit status 2
-> 
-> That right there is a reason /var can not be mounted noexec.  dpkg
-> scripts are NOT required to be shell scripts - some are perl, and one
-> or two are executable, if I recall correctly.  And /var is definitely
-> the place for them.

hmmm probably dpkg could create such scripts in other directory, it runs
under root so it has the premissions.
and people can have their files in /var/spool/mail /var/tmp /var/spool/cron
and many other dirs in /var that's why I want to have /var mounted noexec.
-- 
 Matus "fantomas" Uhlar, sysadmin at NETLAB+ Kosice, Slovakia
 BIC coord for *.sk; admin of netlab.irc.sk; co-admin of irc.felk.cvut.cz

Reply to:

References:
- /home as noexec and X
  - From: "Matus \"fantomas\" Uhlar" <uhlar@fantomas.sk>
- Re: /home as noexec and X
  - From: Ben Gertzfield <che@debian.org>
- Re: /home as noexec and X
  - From: "Alexander N. Benner" <Nikodemus@innocent.com>
- Re: /home as noexec and X
  - From: "Matus \"fantomas\" Uhlar" <uhlar@fantomas.sk>
- Re: /home as noexec and X
  - From: Daniel Jacobowitz <dan@debian.org>

Prev by Date: Re: Policy: Mail folder creation (Re: Debian mutt package)
Next by Date: Re: /home as noexec and X
Previous by thread: Re: /home as noexec and X
Next by thread: Re: /home as noexec and X
Index(es):
- Date
- Thread