Re: suid-perl
On Sun, 31 Jan 1999, Chip Salzenberg wrote:
> > As it is, noexec is almost useless.  I can't help thinking that
> > *all* interpreters *should* check noexec status.
> 
> What's the point?  Such files can be copied to /tmp and run there....
If one were trying to secure such a system then you would probably make
all user-writable areas (i.e. /tmp and /home) noexec,
Not that I'm trying to do this myself, but this seems to be what noexec is
about (and fails to acheive).
Jules
/----------------+-------------------------------+---------------------\
|  Jelibean aka  | jules@jellybean.co.uk         |  6 Evelyn Rd	       |
|  Jules aka     | jules@debian.org              |  Richmond, Surrey   |
|  Julian Bean   | jmlb2@hermes.cam.ac.uk        |  TW9 2TF *UK*       |
+----------------+-------------------------------+---------------------+
|  War doesn't demonstrate who's right... just who's left.             |
|  When privacy is outlawed... only the outlaws have privacy.          |
\----------------------------------------------------------------------/
Reply to: