Re: apt-get and /tmp

To: debian-user@lists.debian.org
Subject: Re: apt-get and /tmp
From: Joey Hess <joeyh@debian.org>
Date: Mon, 30 Sep 2002 13:23:23 -0400
Message-id: <[🔎] 20020930172323.GD2225@kitenet.net>
Mail-followup-to: debian-user@lists.debian.org
In-reply-to: <[🔎] 20020930155439.GA13601@flarenet.com>
References: <[🔎] 20020930155439.GA13601@flarenet.com>

Robert James Kaes wrote:
> My /tmp directory is located on it's own partition and mounted as
> rw,noexec,nosuid.  This is a problem for apt-get, which tries to run the
> preconfigure scripts for a deb from /tmp/config.*.  Is there any way to
> tell apt-get to place the configure scripts in a different location?

Set APT::ExtractTemplates::TempDir in apt.conf

Note that noexec filesystems provide little or no protextion against an
attacker who knows how to execute non-executable binaries with
ld.so.

joey@silk:~>cp /bin/ls .
joey@silk:~>chmod 644 ls
joey@silk:~>ls -l ls 
-rw-r--r--    1 joey     joey        43916 Jan 15 12:20 ls
joey@silk:~>/lib/ld-2.2.4.so ./ls
CVS      bin     doc   lib  lwce  package-sync.log  src
GNUstep  debian  html  ls   mail  screenshot.png    tmp

-- 
see shy jo

Attachment: pgpvdModOMiov.pgp
Description: PGP signature

Reply to:

Follow-Ups:
- Re: apt-get and /tmp
  - From: Robert James Kaes <rjkaes@flarenet.com>

References:
- apt-get and /tmp
  - From: Robert James Kaes <rjkaes@flarenet.com>

Prev by Date: Re: authentication problem (PAM?)
Next by Date: Re: Conv. from STATIC to DHCP ... proxy!
Previous by thread: Re: apt-get and /tmp
Next by thread: Re: apt-get and /tmp
Index(es):
- Date
- Thread