Re: [RFC] "Text file busy" when overwriting libraries

From: Alexander Viro (viro@math.psu.edu)
Date: Mon Oct 15 2001 - 07:11:20 EST

Next message: Alan Cox: "Re: [PATCH] PnP BIOS -- bugfix; update devlist on setpnp"
Previous message: Erik Tews: "Re: 2.4.12-ac1: BUG in sched.c:712"
In reply to: Alan Cox: "Re: [RFC] "Text file busy" when overwriting libraries"
Next in thread: Samium Gromoff: "Re: [RFC] "Text file busy" when overwriting libraries"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 15 Oct 2001, Alan Cox wrote:

> > Anyone can write it, but what the hell will he do without write access to
> > any place that wouldn't be mounted noexec? Environment can be restricted
> > even if you give them shell...
>
> He will type "perl" and interactively issue any damn syscall he likes
> subject to the normal permissions rules. Noexec is only useful for a user
> given virtually nothing.

... and will hit "permission denied" on attempt to exec /usr/bin/perl.
Blanket noexec on /usr instance mounted in his chroot with selective turning
the thing off on some binaries. And yes, I realize that one can always
hunt for buffer overruns in sh(1)...

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Alan Cox: "Re: [PATCH] PnP BIOS -- bugfix; update devlist on setpnp"
Previous message: Erik Tews: "Re: 2.4.12-ac1: BUG in sched.c:712"
In reply to: Alan Cox: "Re: [RFC] "Text file busy" when overwriting libraries"
Next in thread: Samium Gromoff: "Re: [RFC] "Text file busy" when overwriting libraries"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Mon Oct 15 2001 - 21:00:57 EST