Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

Re: a secure base system
From: Valdis.Kletnieks () vt edu
Date: Mon, 15 Mar 2004 15:08:16 -0500

On Mon, 15 Mar 2004 20:27:48 +0100, Alexander Bartolich said:

On typical Linux distributions noexec is pointless.
It does not prevent the execution of dynamically linked ELF images.

$ readelf -l /bin/bash | grep interpreter
      [Requesting program interpreter: /lib/ld-linux.so.2]

$ /lib/ld-linux.so.2 /bin/bash --version
GNU bash, version 2.05b.0(1)-release (i386-redhat-linux-gnu)
Copyright (C) 2002 Free Software Foundation, Inc.

This is fixed in the 2.6 kernel.

Attachment: _bin
Description:


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]