Re: possible mass-filing of bugs: many shared library packages contain binaries in usr/bin

To: debian-devel@lists.debian.org
Subject: Re: possible mass-filing of bugs: many shared library packages contain binaries in usr/bin
From: Anthony Towns <aj@azure.humbug.org.au>
Date: Tue, 14 May 2002 18:05:05 +1000
Message-id: <[🔎] 20020514080504.GA2156@azure.humbug.org.au>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 20020514074505.GJ16352@bluecherry.net>
References: <[🔎] 20020505143828.GA1724@celeron.dekkers> <[🔎] 20020505144108.GF29318@wiggy.net> <[🔎] 20020505165931.GA2046@celeron.dekkers> <[🔎] 871ycqs9jm.fsf@whinlatter.uklinux.net> <[🔎] 20020505213443.GB7559@wiggy.net> <[🔎] 20020505220346.GA3921@celeron.dekkers> <[🔎] 20020505220746.GD7559@wiggy.net> <[🔎] 87g0159h1c.fsf@whinlatter.uklinux.net> <[🔎] 87adrbhcon.fsf@glaurung.green-gryphon.com> <[🔎] 20020514074505.GJ16352@bluecherry.net>

> On Tue, May 07, 2002 at 04:26:32PM -0500, Manoj Srivastava wrote:
> > 	Indeed, the one pro of having libexec that no one seems to
> >  have mentioned is mount options: if /etc/libexec is a separate file
> >  system, I can mount /lib with noexec, and only have the exec mount
> >  flag for libexec, and it adds a little more hassles to a croacker who
> >  has broken in.

On my system at least, all the directories in /usr/lib are owned by root,
and only writable by their owner. The only directory whose group isn't
root is /usr/lib/games/nethack. Given that, it doesn't seem like it'd be
any easier to put an executable in /usr/lib/somewhere than /etc/libexec.

(Being able to mount /var noexec, otoh...)

Cheers,
aj

-- 
Anthony Towns <aj@humbug.org.au> <http://azure.humbug.org.au/~aj/>
I don't speak for anyone save myself. GPG signed mail preferred.

     ``BAM! Science triumphs again!'' 
                    -- http://www.angryflower.com/vegeta.gif


-- 
To UNSUBSCRIBE, email to debian-devel-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

References:
- Re: possible mass-filing of bugs: many shared library packages contain binaries in usr/bin
  - From: Jeroen Dekkers <jeroen@dekkers.cx>
- Re: possible mass-filing of bugs: many shared library packages contain binaries in usr/bin
  - From: Wichert Akkerman <wichert@wiggy.net>
- Re: possible mass-filing of bugs: many shared library packages contain binaries in usr/bin
  - From: Jeroen Dekkers <jeroen@dekkers.cx>
- Re: possible mass-filing of bugs: many shared library packages contain binaries in usr/bin
  - From: Roger Leigh <rl117@york.ac.uk>
- Re: possible mass-filing of bugs: many shared library packages contain binaries in usr/bin
  - From: Wichert Akkerman <wichert@wiggy.net>
- Re: possible mass-filing of bugs: many shared library packages contain binaries in usr/bin
  - From: Jeroen Dekkers <jeroen@dekkers.cx>
- Re: possible mass-filing of bugs: many shared library packages contain binaries in usr/bin
  - From: Wichert Akkerman <wichert@wiggy.net>
- Re: possible mass-filing of bugs: many shared library packages contain binaries in usr/bin
  - From: Roger Leigh <rl117@york.ac.uk>
- Re: possible mass-filing of bugs: many shared library packages contain binaries in usr/bin
  - From: Manoj Srivastava <srivasta@debian.org>
- Re: possible mass-filing of bugs: many shared library packages contain binaries in usr/bin
  - From: Joseph Carter <knghtbrd@bluecherry.net>

Prev by Date: Re: possible mass-filing of bugs: many shared library packages contain binaries in usr/bin
Next by Date: Where is the public key to gpg verify "Release" file of Testing?
Previous by thread: Re: possible mass-filing of bugs: many shared library packages contain binaries in usr/bin
Next by thread: Re: possible mass-filing of bugs: many shared library packages contain binaries in usr/bin
Index(es):
- Date
- Thread