Re: [and paxctl] RT linker, rpath and security

To: tlaronde%polynum.com@localhost
Subject: Re: [and paxctl] RT linker, rpath and security
From: Martin Husemann <martin%duskware.de@localhost>
Date: Thu, 11 May 2023 13:24:21 +0200

On Thu, May 11, 2023 at 12:29:43PM +0200, tlaronde%polynum.com@localhost wrote:
> 
> I can add a /home/Someone directory in the rpath that is only writable
> by Someone. If I have access to Someone's account, I do whatever
> I want.
> 
> What you are saying is that ALL directories should be read-only. And
> this must include mounted mfs ones.

No, I did not say anything like that. I talked about (un)trusted paths.
If you add /home/Someone in your scenario you have to trust Someone.

What makes this different to your shell's $PATH settings? Should we modify
/bin/sh to filter that based on directory ownership and access rights?

Martin

Follow-Ups:
- Re: [and paxctl] RT linker, rpath and security
  - From: Mouse

References:
- RT linker, rpath and security
  - From: tlaronde
- Re: RT linker, rpath and security
  - From: Martin Husemann
- Re: RT linker, rpath and security
  - From: tlaronde
- Re: RT linker, rpath and security
  - From: Martin Husemann
- Re: [and paxctl] RT linker, rpath and security
  - From: tlaronde

Prev by Date: Re: RT linker, rpath and security
Next by Date: Re: RT linker, rpath and security
Previous by Thread: Re: [and paxctl] RT linker, rpath and security
Next by Thread: Re: [and paxctl] RT linker, rpath and security
Indexes:

Home | Main Index | Thread Index | Old Index