Re: [patch] honour MNT_NOEXEC for access()

Hello.

Horst H. von Brand wrote:

Right. But what prevents anybody to have a hacked, non-testing, ld.so lying
around?

Having "noexec" on every user-writable mount can
kind of make that difficult - you can't easily run
the ld.so you just copied in.

It just can't do them (reliably at least) in general.

Certainly it can't, now and then.
Right now the check is to see whether the mmap(PROT_EXEC)
fails. I wanted to change that to something that at least
won't break other apps, but of course without adding any
extra reliability.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [email protected]
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

References:
- Re: [patch] honour MNT_NOEXEC for access()
  - From: "Horst H. von Brand" <[email protected]>

Prev by Date: [PATCH] arch/i386: ioremap balanced with iounmap
Next by Date: [PATCH] kernel-doc: make parameter description indentation uniform
Previous by thread: Re: [patch] honour MNT_NOEXEC for access()
Next by thread: Re: [patch] honour MNT_NOEXEC for access()
Index(es):
- Date
- Thread

[Index of Archives] [Kernel Newbies] [Netfilter] [Bugtraq] [Photo] [Stuff] [Gimp] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Video 4 Linux] [Linux for the blind] [Linux Resources]