On Sat, Nov 26, 2005 at 11:08:31PM -0500, A. Khattri wrote: > > I'd like to set up a firewall host, which should not have > > C/C++/make/headers installed. (imagine someone manages to break in somehow > > - (s)he'll find all tools needed to compile a rootkit/whatever...) [...]
I don't get this. If you manage to break in and are somehow able to execute
the compiler, then you can obtain a shell too. And if you can obtain a
shell, then tools like shar(1) allow you to easily upload all the
tools to build a rootkit, or even a rootkit by itself - you just put the
content in your buffer and "paste" it over the network.
Finding a compiler "dangerous" on a system is overrated imo. If you really
want to restrict the use of the compiler, don't make it world-executable.
Wkr,
Sven Vermeulen
PS Sorry for not replying to the right message, the old one was already
removed...
--
Gentoo Foundation Trustee | http://foundation.gentoo.org
Gentoo Documentation Project Lead | http://www.gentoo.org/proj/en/gdp
Gentoo Council Member
The Gentoo Project <<< http://www.gentoo.org >>>
pgpn53wQbX18J.pgp
Description: PGP signature
