tech-security: Re: kern/7129: normal user can bypass mount 'noexec' flags

Subject: Re: kern/7129: normal user can bypass mount 'noexec' flags
To: Thor Lancelot Simon <tls@rek.tjls.com>
From: Bill Studenmund <wrstuden@nas.nasa.gov>
List: tech-security
Date: 03/12/1999 10:10:17

On Fri, 12 Mar 1999, Thor Lancelot Simon wrote:

> NODEV does.  Consider a carefully-constructed chroot jail, at securelevel
> < 2.  Devices for which there are no nodes in the jail can't be tampered
> with (in theory).

Point taken. :-) If you're in a chroot'd environment, then you get to do
less.

Take care,

Bill