Mailinglist Archive: opensuse-security (297 mails)
| < Previous | Next > |
Re: [suse-security] SuSE webserver
- From: Stefan Fritsch <sfritsch@xxxxxxxxx>
- Date: Wed, 14 Jul 2004 14:56:13 +0200
- Message-id: <200407141456.13187.sfritsch@xxxxxxxxx>
Am Mittwoch, 14. Juli 2004 14:39 schrieb nordi:
> > /dev/hda6 /tmp ext2 rw,nosuid,nodev,noexec 1 2
>
> Mounting /tmp as "noexec" could break stuff. Although I agree that
> nobody should run _any_ programs from /tmp, I have seen 2 programs
> that do expect stuff in /tmp to be executable.
Note that "noexec" does _not_ increase security as it can be easily
circumvented with /lib/ld-linux.so /tmp/foo .
Cheers,
Stefan
--
> > /dev/hda6 /tmp ext2 rw,nosuid,nodev,noexec 1 2
>
> Mounting /tmp as "noexec" could break stuff. Although I agree that
> nobody should run _any_ programs from /tmp, I have seen 2 programs
> that do expect stuff in /tmp to be executable.
Note that "noexec" does _not_ increase security as it can be easily
circumvented with /lib/ld-linux.so /tmp/foo .
Cheers,
Stefan
--
| < Previous | Next > |