|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: [suse-security] perl script drop
From: Peter Wiersig (wiersig-ml
dns.glamus.de)
Date: Mon May 12 2003 - 06:48:07 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
petry wrote:
> Only a small hint for the /tmp-partition: mount it as follows in
> /etc/fstab
>
> /dev/hda5 /tmp ext2 rw,nosuid,nodev,noexec
>
> with the noexec-parameter so no one is able to execute a created
> script from that directory
Only when the script interpreter is located on the noexec partition:
$ cat FreeSpace/hello.pl
print "Hello world\n";
wiersigpeter:~
$ ls -l FreeSpace/hello*
-rw-r--r-- 1 wiersig wiersig 23 May 12 13:47 FreeSpace/hello.pl
-rw-r--r-- 1 wiersig wiersig 17 May 12 13:45 FreeSpace/hello.sh
wiersigpeter:~
$ perl FreeSpace/hello.pl
Hello world
mount options don't help when faced with scripts.
Have fun,
Peter
--
Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-helpsuse.com
Security-related bug reports go to securitysuse.de, not here
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]