> > I would strongly suggest the following patch:
> > ftp://ftp.fuller.edu/Linux/symlink-attack-patch-2.1.71
> > I hope that patch gets in the kernel soon, default to "Y".
>
> Why do we want a patch breaking symbolic links and several applications.
> Fix the applications or fix the use of /tmp even better still.
What applications break? I've heard lots of warnings of "applications
will break", but not actually experienced any. The same can be said for
the non-executable stack patch. I know it may cause problems with libc6,
but as long as I'm using libc5, the extra layer of security it provides is
invaluable. I know for a fact that it's saved me from 2 attempts at
cracking root. Not only did it stop them...but it also gave me immediate
notification that I had an univited guest.
------------------------------------------------------------------
Jon Lewis <jlewis@fdt.net> | Unsolicited commercial e-mail will
Network Administrator | be proof-read for $199/message.
Florida Digital Turnpike |
______http://inorganic5.fdt.net/~jlewis/pgp for PGP public key____