This is the mail archive of the
libc-alpha@sources.redhat.com
mailing list for the glibc project.
Re: [fyre@box3n.gumbynet.org: Re: ld-2.1.3.so allows users to run programs from noexec partition]
- To: "Rodrigo Barbosa (aka morcego)" <rodrigob at conectiva dot com dot br>
- Subject: Re: [fyre@box3n.gumbynet.org: Re: ld-2.1.3.so allows users to run programs from noexec partition]
- From: Ben Collins <bcollins at debian dot org>
- Date: Mon, 4 Sep 2000 20:27:15 -0400
- Cc: libc-alpha at sources dot redhat dot com
- References: <20000904152657.F8559@conectiva.com.br>
On Mon, Sep 04, 2000 at 03:26:57PM -0300, Rodrigo Barbosa (aka morcego) wrote:
> Anything new on this field ? ld-2.1.93.so still executes the file.
Just a question, what's to stop anyone from copying their own ld.so to ~/
and using it? What I mean is, isn't the problem in the kernel and not
glibc (where fs options should be enforced just like read and write
perms)? Even going to the kernel, nothing stops someone from copying an
executable to their local ~/ and adding +x and then executing it. So
basically, the only thing noexec really cures is +s, and even then should
still be the fs (i.e. kernel) that enforces it.
Ben
--
-----------=======-=-======-=========-----------=====------------=-=------
/ Ben Collins -- ...on that fantastic voyage... -- Debian GNU/Linux \
` bcollins@debian.org -- bcollins@openldap.org -- bcollins@linux.com '
`---=========------=======-------------=-=-----=-===-======-------=--=---'