Mailinglist Archive: opensuse-security (320 mails)

< Previous Next >
Re: [suse-security] perl script drop
  • From: Peter Wiersig <wiersig-ml@xxxxxxxxxxxxx>
  • Date: Mon, 12 May 2003 13:48:07 +0200
  • Message-id: <20030512114807.GA21520@xxxxxxxxxxxxx>
petry wrote:
> Only a small hint for the /tmp-partition: mount it as follows in
> /etc/fstab
>
> /dev/hda5 /tmp ext2 rw,nosuid,nodev,noexec
>
> with the noexec-parameter so no one is able to execute a created
> script from that directory

Only when the script interpreter is located on the noexec partition:

$ cat FreeSpace/hello.pl
print "Hello world\n";
wiersig@peter:~
$ ls -l FreeSpace/hello*
-rw-r--r-- 1 wiersig wiersig 23 May 12 13:47 FreeSpace/hello.pl
-rw-r--r-- 1 wiersig wiersig 17 May 12 13:45 FreeSpace/hello.sh
wiersig@peter:~
$ perl FreeSpace/hello.pl
Hello world

mount options don't help when faced with scripts.

Have fun,
Peter

< Previous Next >
Follow Ups
References