Re: [PATCH] Check files' signatures before doing suid/sgid [2/4]

From: Johannes Schlumberger
Date: Mon Jun 25 2007 - 06:54:47 EST

Next message: Takashi Iwai: "Re: Is it time for remove (crap) ALSA from kernel tree ?"
Previous message: Rodolfo Giometti: "[PATCH] ARM PXA: invalid clocks settings."
In reply to: Satyam Sharma: "Re: [PATCH] Check files' signatures before doing suid/sgid [2/4]"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi,

> >If a process uses read() it needs some executable and writable memory. We do
> >check for this in mprotect(). There is a problem with the i386-architecture,
> >because it allows execution of any readable page (except with newer
> >processors). But beyond that ugliness of i386, it should not be possible to
> >execute anything without us noticing it (hopefully).
>
> r and x together is not a problem IMHO.

It is, if you would want to have rw but can only get rwx.
regards,
Johannes

--
Johannes Schlumberger Department of Computer Science IV
Martensstrasse 1 D-91058 Erlangen Germany University of Erlangen-Nuremberg
http://wwwcip.informatik.uni-erlangen.de/~spjsschl
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Takashi Iwai: "Re: Is it time for remove (crap) ALSA from kernel tree ?"
Previous message: Rodolfo Giometti: "[PATCH] ARM PXA: invalid clocks settings."
In reply to: Satyam Sharma: "Re: [PATCH] Check files' signatures before doing suid/sgid [2/4]"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]