Date: Sun, 29 Jun 2003 22:17:16 +0200 From: Roman Neuhauser <neuhauser@bellavista.cz> To: hackers@freebsd.org Subject: Re: Mounting Message-ID: <20030629201716.GF11229@freepuppy.bellavista.cz> In-Reply-To: <Pine.GSO.4.44.0306241630480.419-100000@mail.ilrt.bris.ac.uk> <Pine.NEB.3.96L.1030623114101.52424E-100000@fledge.watson.org> References: <20030623155627.5d0a0ad3.db@traceroute.dk> <Pine.GSO.4.44.0306241630480.419-100000@mail.ilrt.bris.ac.uk> <20030623155627.5d0a0ad3.db@traceroute.dk> <Pine.NEB.3.96L.1030623114101.52424E-100000@fledge.watson.org>
next in thread | previous in thread | raw e-mail | index | archive | help
# rwatson@freebsd.org / 2003-06-23 11:45:37 -0400:
> On Mon, 23 Jun 2003, Socketd wrote:
> > Would it be possible to have this configuration and not having the
> > system fail (because of lacking rights or something):
> > /var/mail noexec
>
> nosuid would be fine here also.
# Jan.Grant@bristol.ac.uk / 2003-06-24 16:31:33 +0100:
> On Mon, 23 Jun 2003, Socketd wrote:
> > /tmp and /var/tmp noexec (I know /tmp has to be execuable to make
> > world)
>
> nosymfollow. I've not found anything that this breaks (except a
> gazillion symlink race exploits).
This questions will be probably extremely stupid:
why aren't these defaults?
--
If you cc me or remove the list(s) completely I'll most likely ignore
your message. see http://www.eyrie.org./~eagle/faqs/questions.html
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030629201716.GF11229>