Subject: Re: mmap(), security and /dev/zero
To: Thor Lancelot Simon <tls@rek.tjls.com>
From: Curt Sampson <cjs@cynic.net>
List: tech-kern
Date: 06/24/2004 09:51:46
On Wed, 23 Jun 2004, Thor Lancelot Simon wrote:
> From your point of view. From my point of view, requiring execute
> permission on any file backing an executable mapping would give an
> enormous security benefit; it would, for example, allow one to ensure
> that code could never be executed from any writable file system.
Doesn't the noexec flag allow you to do this already?
cjs
--
Curt Sampson <cjs@cynic.net> +81 90 7737 2974 http://www.NetBSD.org
Don't you know, in this new Dark Age, we're all light. --XTC