Re: aditional partition parameter

2007-01-27 Thread Thilo Six
Sven Arvidsson wrote the following on 27.01.2007 23:51: >>> There are a variety of programs that will fail if /tmp is not >>> executable. In general, the noexec flag is really not very useful >>> because it is trivial to work around. > > At least the /lib/ld-linux.so.2 work around shouldn't work

Re: aditional partition parameter

2007-01-27 Thread Sven Arvidsson
On Sat, 2007-01-27 at 21:14 +0100, Thilo Six wrote: > > There are a variety of programs that will fail if /tmp is not > > executable. In general, the noexec flag is really not very useful > > because it is trivial to work around. At least the /lib/ld-linux.so.2 work around shouldn't work anymore

Re: aditional partition parameter

2007-01-27 Thread Roberto C. Sanchez
On Sat, Jan 27, 2007 at 09:14:09PM +0100, Thilo Six wrote: > > Yes that´s what the harden howto also say. > I am just wondering if this still applies today because this howto seems > to be from 2000/2001 that must have been pre woody and we are now on the > way to etch. > > Are the implications t

Re: aditional partition parameter

2007-01-27 Thread Thilo Six
Roberto C. Sanchez wrote the following on 27.01.2007 21:02: > There are a variety of programs that will fail if /tmp is not > executable. In general, the noexec flag is really not very useful > because it is trivial to work around. Yes that´s what the harden howto also say. I am just wondering

Re: aditional partition parameter

2007-01-27 Thread Roberto C. Sanchez
On Sat, Jan 27, 2007 at 07:45:58PM +0100, Thilo Six wrote: > Hello > > I am on the way to try/test debian etch. > During instaltion in partition tool one could set special parameters for > partition > > My question: > I use ext3 and have /var and /tmp on seperate partitions and would > specifical

Re: aditional partition parameter

2007-01-27 Thread Thilo Six
Sven Arvidsson wrote the following on 27.01.2007 20:13: > See the excellent Securing Debian Manual, especially this section, and > the one following. > http://www.debian.org/doc/manuals/securing-debian-howto/ch4.en.html#s4.10 Thank you. bye Thilo -- gpg key: 0x4A411E09 -- To UNSUBSCRIBE,

Re: aditional partition parameter

2007-01-27 Thread Sven Arvidsson
On Sat, 2007-01-27 at 19:45 +0100, Thilo Six wrote: > My question: > I use ext3 and have /var and /tmp on seperate partitions and would > specifically know about noexec and nosuid flags on these partitions. > > Is it a good advice to use these two flags on these partitions? > Are there any program