Subject: Re: mmap(), security and /dev/zero
To: Daniel Carosone <>
From: Curt Sampson <>
List: tech-security
Date: 06/24/2004 10:01:28
On Thu, 24 Jun 2004, Daniel Carosone wrote:

> No, it needs this change to work. Otherwise, potentially, a program
> executed from a r/o filesystem might be somehow tricked into loading
> shlibs from a writable path.

I don't quite understand this. Ought not any page in core backed by a
page on a noexec filesystem be marked non-executable, regardless of any
other circumstances?

Curt Sampson  <>   +81 90 7737 2974
    Don't you know, in this new Dark Age, we're all light.  --XTC