Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1752170AbWIXGyM (ORCPT ); Sun, 24 Sep 2006 02:54:12 -0400 Received: (majordomo@vger.kernel.org) by vger.kernel.org id S1752171AbWIXGyM (ORCPT ); Sun, 24 Sep 2006 02:54:12 -0400 Received: from mail.aknet.ru ([82.179.72.26]:49932 "EHLO mail.aknet.ru") by vger.kernel.org with ESMTP id S1752170AbWIXGyL (ORCPT ); Sun, 24 Sep 2006 02:54:11 -0400 Message-ID: <45162BE5.2020100@aknet.ru> Date: Sun, 24 Sep 2006 10:55:33 +0400 From: Stas Sergeev User-Agent: Thunderbird 1.5.0.7 (X11/20060913) MIME-Version: 1.0 To: Alan Cox Cc: Hugh Dickins , Andrew Morton , Ulrich Drepper , Linux kernel Subject: Re: [patch] remove MNT_NOEXEC check for PROT_EXEC mmaps References: <45150CD7.4010708@aknet.ru> <451555CB.5010006@aknet.ru> <1159037913.24572.62.camel@localhost.localdomain> In-Reply-To: <1159037913.24572.62.camel@localhost.localdomain> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit Sender: linux-kernel-owner@vger.kernel.org X-Mailing-List: linux-kernel@vger.kernel.org Content-Length: 637 Lines: 17 Hello. Alan Cox wrote: > Agreed mprotect should also be fixed. Since "noexec" was already rendered useless - yes. Before, people could use it and hope the binaries won't get executed (and if it was possible to execute them by invoking ld.so directly, then ld.so could have been fixed). Now the only possibility is to not use the "noexec" at all. So does that add to security or substract?.. - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/