Ian wrote: > why is this? Surely it is better security to do so? [EMAIL PROTECTED]:~>ls -l ./ls -rw------- 1 joey joey 43916 Dec 26 22:46 ./ls [EMAIL PROTECTED]:~>/lib/ld-2.2.4.so ./ls CVS aalib.nohack.diff doc ls screenshot.png GNUstep bin html mail src a debian lib package-sync.log tmp
If you remove the execute bit from ld.so to avoid this, you in turn break execution of all deymaically linked libc6 programs. So sure, noexec does raise the bar tiny little bit, just because an attacker needs to remember to try this trick, and needs to be able to do so in their exploit. Anyway, I would like to make debconf (er, really apt-utils) use a different temporary directory, but I have not been able to come up with better one so far. -- see shy jo
