[Gllug] Limiting SSH access
Nix
nix at esperi.demon.co.uk
Sun Apr 6 22:16:09 UTC 2003
On Thu, 3 Apr 2003, Richard W. M. Jones spake:
> On the project I mentioned in the earlier email we mounted /home
> with the 'noexec' flag so users couldn't execute anything from it!
This is useless as long as the user can get at the glibc dynamic loader
(which very likely he can):
,----
| nix at hades ~ % ./foo
| zsh: ./foo: Permission denied
| nix at hades ~ % /lib/ld-linux.so.2 ./foo
| Hello world
`----
--
#ifdef USE_ISPTS_FLAG
} else { /* else pty, not pts */
#endif
--
Gllug mailing list - Gllug at linux.co.uk
http://list.ftech.net/mailman/listinfo/gllug
More information about the GLLUG
mailing list