Gentoo Archives: gentoo-security

From: Joe Knall <joe.knall@×××.net>
To: gentoo-security@l.g.o
Subject: Re: [gentoo-security] mount noexec and ro
Date: Sat, 04 Nov 2006 13:38:10
Message-Id: 200611041427.32114.joe.knall@gmx.net
In Reply to: Re: [gentoo-security] mount noexec and ro by Eduardo Tongson
1 On Sat, 2006-11-04 13:47 Eduardo Tongson wrote:
2 > On 11/4/06, Wolfram Schlich <lists@×××××××××××××××.org> wrote:
3 > > It only helps against scriptkiddie-attacks.
4 > > '/lib/ld-linux.so.2 /tmp/somedynamicallylinkedbinary' still works.
5 >
6 > Should not work on recent kernels anymore.
7 > Last time i tried it on 2.6.17.
8
9 seems not to work with SuSE 2.6.11.4-21.14-default, Gentoo 2.6.16.28-xen
10 and 2.6.17-gentoo-r8
11
12 cp -a dynamically linked /bin/date /home/joe as root
13 joe@checkbox:~> /lib/ld-linux.so.2 /home/joe/date
14 /home/joe/date: error while loading shared libraries: /home/joe/date:
15 failed to map segment from shared object: Operation not permitted
16
17 Joe
18 --
19 gentoo-security@g.o mailing list