[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[suse-security] Web Server Security

Does anyone think, that it makes sense to let have /bin/bash the following 
-rwx---r-x  1 root www 490716 Sep  9 18:12 /bin/bash

With that setting, anyone exploiting the webserver could not execute 
/bin/bash (if course the same permissions could also be applied to /bin).

Has anyone ever tried this? Does it break things? 
Did I find something cool? ;-)


__________________    /"\
Markus Gaugusch       \ /    ASCII Ribbon Campaign
markus(at)gaugusch.at  X     Against HTML Mail
                      / \

Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-help@xxxxxxxx
Security-related bug reports go to security@xxxxxxx, not here