[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Executable /lib/ld-linux.so breaks noexec


Is there any particular reason to have /lib/ld-linux.so.* exxecutable?
If it is used only as a proper library, it need not be executable.

The problem is that this breaks the "noexec" mount option. If /foo is
mounted noexec, then one cannot do /foo/myprog, but 

/lib/ld-linux.so.1 /foo/myprog

will work.

This prevents proper separation of executable and writable files, thus
I consider this as a security hole.

Any comments to this?

Thanks in advance,

Martin Pitt 
home:  www.piware.de
eMail: martin@piware.de

Reply to: