No executables in /tmp

Gregory Hill Gregory_Hill at tni.com
Mon Mar 27 16:15:31 MST 2006


Might be wrong, but I think that would also mean you'd need to add
whatever user apache runs as (I think it's 'nobody' by default) to that
group, or you won't be able to run perl-based websites.  That is, if you
need that.

Greg

> -----Original Message-----
> From: plug-bounces at plug.org [mailto:plug-bounces at plug.org] On Behalf
Of
> Jeff Schroeder
> Sent: Monday, March 27, 2006 4:07 PM
> To: Provo Linux Users Group Mailing List
> Subject: Re: No executables in /tmp
> 
> Marc:
> 
> > You could also change the group of perl to a perl group and chmod to
> > 754.  Then only root and thoes in the perl can execute it.
> 
> Hey, that's much better than my hack! :)
> 
> Not only will it prevent automated cracks, but I could specifically
> enable only those users who have (authorized) shell access.
> 
> Thanks.
> Jeff



More information about the PLUG mailing list