Re: Debconf and noexec on /tmp

To: debian-security@lists.debian.org
Subject: Re: Debconf and noexec on /tmp
From: Wichert Akkerman <wichert@wiggy.net>
Date: Thu, 8 Nov 2001 17:09:15 +0100
Message-id: <[🔎] 20011108170914.U20495@wiggy.net>
Mail-followup-to: debian-security@lists.debian.org
In-reply-to: <[🔎] 20011108064926.H28190@plato.local.lan>
References: <[🔎] 20011108151305.A9804@easter-eggs.com> <[🔎] 20011108053148.G28190@plato.local.lan> <[🔎] 20011108154356.L20495@wiggy.net> <[🔎] 20011108064926.H28190@plato.local.lan>

Previously Ethan Benson wrote:
> 1: if your system is vulnerable to script kiddies then admin needs to
>    be taken out back and beaten with a large LART.

Sure, but I don't mind having a hopefully completely redundant extra
layer in there.

> 2: if the script kiddie even has 2 tenths of a percent of clue he will
>    figure out how to move the file somewhere else, or use my earlier
>    mentiond ld//bin/sh method of execution.

You overestimate scriptkiddies.

Wichert.

-- 
  _________________________________________________________________
 /wichert@wiggy.net         This space intentionally left occupied \
| wichert@deephackmode.org            http://www.liacs.nl/~wichert/ |
| 1024D/2FA3BC2D 576E 100B 518D 2F16 36B0  2805 3CB8 9250 2FA3 BC2D |

Reply to:

References:
- Debconf and noexec on /tmp
  - From: Emmanuel Lacour <elacour@easter-eggs.com>
- Re: Debconf and noexec on /tmp
  - From: Ethan Benson <erbenson@alaska.net>
- Re: Debconf and noexec on /tmp
  - From: Wichert Akkerman <wichert@wiggy.net>
- Re: Debconf and noexec on /tmp
  - From: Ethan Benson <erbenson@alaska.net>

Prev by Date: Strange auth.log entry
Next by Date: Re: Debconf and noexec on /tmp
Previous by thread: Re: Debconf and noexec on /tmp
Next by thread: Re: Debconf and noexec on /tmp
Index(es):
- Date
- Thread