Re: Non-Executable Stack Patch

Matthias Urlichs (smurf@work.smurf.noris.de)
5 Jun 1997 18:26:40 +0200

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Larry M. Augustin: "pre2.0.31-2: minor sets of patches"
Previous message: Manuel J. Galan: "ext2 on CD-ROM not working... (2.1.42)"
Maybe in reply to: Andi Gutmans: "Non-Executable Stack Patch"

alan@lxorguk.ukuu.org.uk (Alan Cox) writes:
>
> A lot of stuff uses /tmp without due care and attention.

Tell me if I'm wrong, but aren't those bugs all of the "put some wild stuff
into /tmp and let it be overwritten" variety?

It seems to me that most (if not all) of these holes can be fixed by
(a) setting the t bit on /tmp and (b) patching the kernel not to follow
symlinks which are stored in a directory with the t bit set.

There's even a patch for (b) floating around.

-- The devil knew not what he did when he made man politic. -- Shakespeare

-- 
Matthias Urlichs         \  noris network GmbH  /  Xlink-POP Nürnberg 
Schleiermacherstraße 12   \   Linux+Internet   /   EMail: urlichs@noris.de
90491 Nürnberg (Germany)   \    Consulting+Programming+Networking+etc'ing
   PGP: 1024/4F578875   1B 89 E2 1C 43 EA 80 44  15 D2 29 CF C6 C7 E0 DE
       Click <A HREF="http://info.noris.de/~smurf/finger">here</A>.    42

Next message: Larry M. Augustin: "pre2.0.31-2: minor sets of patches"
Previous message: Manuel J. Galan: "ext2 on CD-ROM not working... (2.1.42)"
Maybe in reply to: Andi Gutmans: "Non-Executable Stack Patch"