OT: Bad interpreter
Lars Kristiansen
lars+lister.mailscanner at adventuras.no
Mon Oct 30 01:49:50 GMT 2006
Raymond Dijkxhoorn skrev:
> Hi!
>
>>>> [root at 102546-web1 tmp]# /tmp/tmp.sh
>>>> - -bash: /tmp/tmp.sh: /bin/sh: bad interpreter: Permission denied
>
>>> Check if /tmp isnt mounted noexec ...
>
>> That was it. I found it 2 minutes after I posted. Why would anyone do
>> that? If you are trying to keep nasty programs out, then surely they'll
>> just use /var/tmp instead.
>> Confused by why this was set this way...
>
> Some do this to have 'protection' ... but somehow people know how to get
> around this anyway. If you exec a script with perl /tmp/blah it still
> works.
Once upon a php-weakness,
I discovered some new and interesting binaries in /tmp.
So I thought that if webserver-writeable directories does not need to be
mounted executable, why should they?
More information about the MailScanner
mailing list