Gentoo Archives: gentoo-security

From: Joe Knall <joe.knall@×××.net>
To: gentoo-security@l.g.o
Subject: Re: [gentoo-security] mount noexec and ro
Date: Sat, 04 Nov 2006 13:38:10
Message-Id: 200611041427.32114.joe.knall@gmx.net
In Reply to: Re: [gentoo-security] mount noexec and ro by Eduardo Tongson
On Sat, 2006-11-04 13:47 Eduardo Tongson wrote:
> On 11/4/06, Wolfram Schlich <lists@×××××××××××××××.org> wrote: > > It only helps against scriptkiddie-attacks. > > '/lib/ld-linux.so.2 /tmp/somedynamicallylinkedbinary' still works. > > Should not work on recent kernels anymore. > Last time i tried it on 2.6.17.
seems not to work with SuSE 2.6.11.4-21.14-default, Gentoo 2.6.16.28-xen and 2.6.17-gentoo-r8 cp -a dynamically linked /bin/date /home/joe as root joe@checkbox:~> /lib/ld-linux.so.2 /home/joe/date /home/joe/date: error while loading shared libraries: /home/joe/date: failed to map segment from shared object: Operation not permitted Joe -- gentoo-security@g.o mailing list