Gentoo Logo
Gentoo Spaceship




Note: Due to technical difficulties, the Archives are currently not up to date. GMANE provides an alternative service for most mailing lists.
c.f. bug 424647
List Archive: gentoo-security
Navigation:
Lists: gentoo-security: < Prev By Thread Next > < Prev By Date Next >
Headers:
To: gentoo-security@g.o
From: Miguel Angel Tormo Alfaro <matormo@...>
Subject: Re: mount noexec and ro
Date: Mon, 6 Nov 2006 06:58:03 +0100
But normally only root can make devices, right?

El Sábado 04 Noviembre 2006 20:03, Paul de Vrieze escribió:
> On Saturday 04 November 2006 17:27, Joe Knall wrote:
> > correct, it's atually like this
> > /srv/www type ext3 (ro,nosuid,nodev,acl,user_xattr)
> > /srv/www/data type ext3 (rw,noexec,nosuid,acl,user_xattr)
> >
> > but I need a /dev, currently data/dev with null and urandom there,
> > writeable and not nodev (could as well be a separate partition).
> > Do you think this turns all the rest in vain?
> 
> Nodev is mainly for those situations where you may not have full control over 
> the disk (like usb sticks). But the ability to have devices will mean that 
> those who can make devices can abuse them.
> 
> Paul
> 

-- 
gentoo-security@g.o mailing list


References:
mount noexec and ro
-- Joe Knall
Re: mount noexec and ro
-- Joe Knall
Re: mount noexec and ro
-- Paul de Vrieze
Navigation:
Lists: gentoo-security: < Prev By Thread Next > < Prev By Date Next >
Previous by thread:
Re: mount noexec and ro
Next by thread:
Re: mount noexec and ro
Previous by date:
Re: [gentoo-hardened] Re: Mini Gentoo in VMWare
Next by date:
Introduction


Updated Jun 17, 2009

Summary: Archive of the gentoo-security mailing list.

Donate to support our development efforts.

Copyright 2001-2013 Gentoo Foundation, Inc. Questions, Comments? Contact us.