Hey all-- I'm in the process of securing a web server, and I wonder if there's a way to prevent executables from being installed and run in the /tmp directory.
I'm mounting /tmp with "-o noexec" so it's not possible to execute a script or program directly. In other words, this file: #!/usr/bin/perl print "This is my program."; ... won't run even if it's chmod 755. However, it's still possible to do this: perl /tmp/myscript.pl ... and it'll run happily. Can I prevent the system from allowing this? I suspect not, but figured I'd ask... TIA, Jeff
pgps386m9RwRf.pgp
Description: PGP signature
/* PLUG: http://plug.org, #utah on irc.freenode.net Unsubscribe: http://plug.org/mailman/options/plug Don't fear the penguin. */
