[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Bug#179125: maintainer scripts tries to exec script in /tmp

Russell Coker <russell@coker.com.au> writes:
> If you have an administrative policy which precludes users running
> their own executables then a noexec /tmp and /home are required.
> Such a policy does not seem very sensible, as has been demonstrated
> you can run Perl and shell scripts regardless.

You can run binaries regardless of both noexec and the execute
permission bits, too.  It's not clear that there's any point to the
option at all.

    rjk@rollercoaster$ ls -l /boot/ls.noexec 
    -rw-r--r--    1 root     rjk         43784 Feb  3 13:40 /boot/ls.noexec
    rjk@rollercoaster$ mount | grep /boot
    /dev/hda1 on /boot type ext3 (rw,noexec,errors=remount-ro)

    rjk@rollercoaster$ /lib/ld-linux.so.2 /boot/ls.noexec
    3rd   TODO   dead.letter  [yadda yadda yadda]

-- 
http://www.greenend.org.uk/rjk/
Reply to: