From owner-freebsd-security Sat Aug 29 00:21:13 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id AAA24917 for freebsd-security-outgoing; Sat, 29 Aug 1998 00:21:13 -0700 (PDT) (envelope-from owner-freebsd-security@FreeBSD.ORG) Received: from banshee.cs.uow.edu.au (banshee.cs.uow.edu.au [130.130.188.1]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id AAA24898 for ; Sat, 29 Aug 1998 00:21:03 -0700 (PDT) (envelope-from ncb05@banshee.cs.uow.edu.au) Received: (from ncb05@localhost) by banshee.cs.uow.edu.au (8.9.1/8.9.1) id RAA05549; Sat, 29 Aug 1998 17:19:49 +1000 (EST) Date: Sat, 29 Aug 1998 17:19:49 +1000 (EST) From: Nicholas Charles Brawn X-Sender: ncb05@banshee.cs.uow.edu.au To: "Matthew D. Fuller" cc: "Jan B. Koum " , scex , "Jeffrey J. Mountin" , security@FreeBSD.ORG Subject: Re: Shell history In-Reply-To: <19980829012245.54585@futuresouth.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sat, 29 Aug 1998, Matthew D. Fuller wrote: > On Fri, Aug 28, 1998 at 10:42:52PM -0700, Jan B. Koum woke me up to tell me: > > Hmm.. you are right, but what will stop an attacker who has > > freebsd box or has access to one to download the binary? > > mount -u -o noexec /home? > (and /tmp, of course) > Or you could try my trusted path execution patch: http://rabble.uow.edu.au/~nick/security/tpe.stable.diff Of course, by that stage we're down to worrying about LD_LIBRARY_PATH problems, and interpreters such as perl. :) Nick -- Email: ncb05@uow.edu.au - http://rabble.uow.edu.au/~nick Key fingerprint = DE 30 33 D3 16 91 C8 8D A7 F8 70 03 B7 77 1A 2A "When in doubt, ask someone wiser than yourself..." -unknown To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message