[18206] in bugtraq
Re: /tmp topic
daemon@ATHENA.MIT.EDU (Glynn Clements)
Tue Dec 19 23:47:59 2000
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Message-Id: <14911.18502.837744.837755@cerise.globalmegacorp.com>
Date: Tue, 19 Dec 2000 11:36:38 +0000
Reply-To: Glynn Clements <glynn@SENSEI.CO.UK>
From: Glynn Clements <glynn@SENSEI.CO.UK>
X-To: Max Gribov <mgribov@LINKSHARE.COM>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <3A3A939B.6918C1CF@linkshare.com>
Max Gribov wrote:
> Mount /tmp with noexec option in /etc/fstab is a pretty secure thingto
> do...
Note that "noexec" doesn't protect against scripts or shared
libraries. And even if it did, unless every program on the system (not
just setuid programs) is safe from buffer overflow exploits, it won't
really help.
--
Glynn Clements <glynn@sensei.co.uk>
