Re: Recommendations for server, 2 take

To: "Michelle Konzack" <linux4michelle@freenet.de>, <debian-isp@lists.debian.org>
Subject: Re: Recommendations for server, 2 take
From: "Mark Poole" <mark@vox.io>
Date: Tue, 24 Jan 2006 19:09:43 -0000
Message-id: <[🔎] 00c101c62119$bbfa2630$3d281dac@your80osmj3ni6>
References: <5tQf2-Wa-25@gated-at.bofh.it> <5u2pR-1VG-3@gated-at.bofh.it> <5u82I-1Ch-63@gated-at.bofh.it> <5vjpX-7o6-19@gated-at.bofh.it> <5vjyf-7NZ-7@gated-at.bofh.it> <[🔎] slrndsl6ef.l6h.spambait@truffula.sj.ca.us> <[🔎] 20060124172934.GG373@freenet.de>

First thing I do is move /tmp and /var/tmp to a
partition that's mounted noexec.
Too many sloppy PHP apps.  Worms drop things in /tmp
and run them from there.


Do you know, that you can run anything from there without
haveing /tmp exec?

Crackerst today can execute anythin even if mounted
noexec

I would agree, however this is another layer of security that will stop mostbasic worms that attempt to execute themselfs from the /tmp directory.


Regards,
Mark Poole

Reply to:

Follow-Ups:
- Re: Recommendations for server, 2 take
  - From: Dan MacNeil <dan@thecsl.org>

References:
- Re: Recommendations for server, 2 take
  - From: "Cameron L. Spitzer" <cls@truffula.sj.ca.us>
- Re: Recommendations for server, 2 take
  - From: Michelle Konzack <linux4michelle@freenet.de>

Prev by Date: Re: Kernel for 3ware 9550SX
Next by Date: Re: Recommendations for server, 2 take
Previous by thread: Re: Recommendations for server, 2 take
Next by thread: Re: Recommendations for server, 2 take
Index(es):
- Date
- Thread