Re: suid-perl
On Sun, 31 Jan 1999, Chip Salzenberg wrote:
> > As it is, noexec is almost useless. I can't help thinking that
> > *all* interpreters *should* check noexec status.
>
> What's the point? Such files can be copied to /tmp and run there....
If one were trying to secure such a system then you would probably make
all user-writable areas (i.e. /tmp and /home) noexec,
Not that I'm trying to do this myself, but this seems to be what noexec is
about (and fails to acheive).
Jules
/----------------+-------------------------------+---------------------\
| Jelibean aka | jules@jellybean.co.uk | 6 Evelyn Rd |
| Jules aka | jules@debian.org | Richmond, Surrey |
| Julian Bean | jmlb2@hermes.cam.ac.uk | TW9 2TF *UK* |
+----------------+-------------------------------+---------------------+
| War doesn't demonstrate who's right... just who's left. |
| When privacy is outlawed... only the outlaws have privacy. |
\----------------------------------------------------------------------/
Reply to: