Re: [patch] remove MNT_NOEXEC check for PROT_EXEC mmaps

From: Stas Sergeev
Date: Mon Sep 25 2006 - 13:16:41 EST

Next message: Luben Tuikov: "Re: [PATCH] fix idiocy in asd_init_lseq_mdp()"
Previous message: Vovan: "Re: [PATCH 5/5] Add gsm phone support for the mixer in tsc2101 alsa driver."
In reply to: Arjan van de Ven: "Re: [patch] remove MNT_NOEXEC check for PROT_EXEC mmaps"
Next in thread: Stas Sergeev: "Re: [patch] remove MNT_NOEXEC check for PROT_EXEC mmaps"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi Arjan.

Arjan van de Ven wrote:

... to add a "security" feature?
sounds like the wrong tradeoff!

There is now an ongoing discussion about that here:
http://uwsg.ucs.indiana.edu/hypermail/linux/kernel/0609.2/2151.html
continues here:
http://uwsg.ucs.indiana.edu/hypermail/linux/kernel/0609.3/0008.html
with many posts already.
I'd like you to contribute to it.

In particular, I would be very happy if you (or anyone
else) will tell me why the noexec filesystem deny PROT_EXEC
for MAP_PRIVATE, while even the R/O filesystem doesn't deny
PROT_WRITE for MAP_PRIVATE? This is one of the key points of
mine, but there are others too.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Luben Tuikov: "Re: [PATCH] fix idiocy in asd_init_lseq_mdp()"
Previous message: Vovan: "Re: [PATCH 5/5] Add gsm phone support for the mixer in tsc2101 alsa driver."
In reply to: Arjan van de Ven: "Re: [patch] remove MNT_NOEXEC check for PROT_EXEC mmaps"
Next in thread: Stas Sergeev: "Re: [patch] remove MNT_NOEXEC check for PROT_EXEC mmaps"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]