Re: [patch] honour MNT_NOEXEC for access()

From: Stas Sergeev
Date: Mon Oct 09 2006 - 00:50:06 EST

Next message: Randy Dunlap: "[PATCH] kernel-doc: make parameter description indentation uniform"
Previous message: Amol Lad: "[PATCH] arch/i386: ioremap balanced with iounmap"
In reply to: Horst H. von Brand: "Re: [patch] honour MNT_NOEXEC for access()"
Next in thread: Stas Sergeev: "Re: [patch] honour MNT_NOEXEC for access()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello.

Horst H. von Brand wrote:

Right. But what prevents anybody to have a hacked, non-testing, ld.so lying
around?

Having "noexec" on every user-writable mount can
kind of make that difficult - you can't easily run
the ld.so you just copied in.

It just can't do them (reliably at least) in general.

Certainly it can't, now and then.
Right now the check is to see whether the mmap(PROT_EXEC)
fails. I wanted to change that to something that at least
won't break other apps, but of course without adding any
extra reliability.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Randy Dunlap: "[PATCH] kernel-doc: make parameter description indentation uniform"
Previous message: Amol Lad: "[PATCH] arch/i386: ioremap balanced with iounmap"
In reply to: Horst H. von Brand: "Re: [patch] honour MNT_NOEXEC for access()"
Next in thread: Stas Sergeev: "Re: [patch] honour MNT_NOEXEC for access()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]