Re: suid-perl

To: Jules Bean <jmlb2@hermes.cam.ac.uk>
Cc: debian-devel@lists.debian.org
Subject: Re: suid-perl
From: Chip Salzenberg <chip@perlsupport.com>
Date: Sun, 31 Jan 1999 18:15:15 -0500
Message-id: <[🔎] 19990131181514.E16021@perlsupport.com>
In-reply-to: <[🔎] Pine.SOL.3.95q.990131224323.3831B-100000@red.csi.cam.ac.uk>; from Jules Bean on Sun, Jan 31, 1999 at 10:45:07PM +0000
References: <[🔎] 19990131174610.D16021@perlsupport.com> <[🔎] Pine.SOL.3.95q.990131224323.3831B-100000@red.csi.cam.ac.uk>

According to Jules Bean:
> On Sun, 31 Jan 1999, Chip Salzenberg wrote:
> > The code exists to check the mount options relevant to an open file.
> > It's just a Small Matter of Programming to integrate that into the
> > Perl source code, and disable emultation of setuid scripts when the
> > 'nosuid' mount option is set.
> 
> But, then every interpreter should do this [...] every suid-emulating
> interpreter.

(For those who don't know, suidperl is a setuid root binary that
securely *emulates* setuid scripts on operating systems that don't
support them directly.)

And yes, in theory, other suid-emulating interpreters ought to do the
same checks -- but AFAIK, there _are_ no others.

> Why hasn't linus patched the kernel so that suid scripts are secure?
> It's an easy task, surely?

"Beats the heck out of me, Batman."

> As it is, noexec is almost useless.  I can't help thinking that
> *all* interpreters *should* check noexec status.

What's the point?  Such files can be copied to /tmp and run there....
-- 
Chip Salzenberg      - a.k.a. -      <chip@perlsupport.com>
      "When do you work?"   "Whenever I'm not busy."

Reply to:

Follow-Ups:
- Re: suid-perl
  - From: Jules Bean <jmlb2@hermes.cam.ac.uk>

References:
- Re: suid-perl
  - From: Chip Salzenberg <chip@perlsupport.com>
- Re: suid-perl
  - From: Jules Bean <jmlb2@hermes.cam.ac.uk>

Prev by Date: Re: Call for mascot! :-)
Next by Date: Re: suid-perl
Previous by thread: Re: suid-perl
Next by thread: Re: suid-perl
Index(es):
- Date
- Thread