Bug#299007: base-files: Insecure PATH

To: 299007@bugs.debian.org, psz@maths.usyd.edu.au, srivasta@debian.org
Subject: Bug#299007: base-files: Insecure PATH
From: psz@maths.usyd.edu.au
Date: Mon, 21 Mar 2005 09:12:14 +1100
Message-id: <[🔎] 200503202212.j2KMCEN8028814@pisa.maths.usyd.edu.au>
Reply-to: psz@maths.usyd.edu.au, 299007@bugs.debian.org

A little while ago I wrote:

> (A partial solution would be to mount nosuid. Another part would require a
> squash-gid-on-mount option: mount has no such options for NFS, though has
> similar options for some other filesystems; there are also uid/gid mapping
> options for NFS exports.)

Re-reading, I see it makes no sense (I do not know what I was thinking at
the time). Mounting nosuid may be sensible (but suid is often wanted);
there is no protection against users (including those in group staff) being
trojaned e.g. via their .bashrc files.

Cheers,

Paul Szabo   psz@maths.usyd.edu.au   http://www.maths.usyd.edu.au/u/psz/
School of Mathematics and Statistics   University of Sydney    Australia

Reply to:

Prev by Date: Bug#299007: base-files: Insecure PATH
Next by Date: Processed: reassign email address
Previous by thread: Bug#299007: base-files: Insecure PATH
Next by thread: Bug#299007: base-files: Insecure PATH
Index(es):
- Date
- Thread