[7946] in bugtraq
Re: Dump a mode --x--x--x binary on Linux 2.0.x
daemon@ATHENA.MIT.EDU (Alan Cox)
Tue Sep 15 11:45:53 1998
Date: Tue, 15 Sep 1998 14:52:30 +0100
Reply-To: Alan Cox <alan@LXORGUK.UKUU.ORG.UK>
From: Alan Cox <alan@LXORGUK.UKUU.ORG.UK>
X-To: luyer@UCS.UWA.EDU.AU
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: <199809150436.MAA01176@typhaon.ucs.uwa.edu.au> from "David Luyer"
at Sep 15, 98 12:36:22 pm
> process-dump-... files in the current directory. The executable itself
> can be recovered by catting the first few files together and truncating
> at the executable size. I have tested this by reconstructing a copy of
> /bin/cat which I had protected mode 111 under Linux 2.0.x.
You can only do this for non setuid applications. I would question it
is even a bug. Execute only is an extremely vague concept anyway on
x86 since the chip doesnt really support it physically.
The convenience and usefulness of LD_PRELOAD seems to far outweigh this
consideration for normal use. Its probably one for the 'secure linux'
patch collection therefore.
Alan
