OT: Bad interpreter
Raymond Dijkxhoorn
raymond at prolocation.net
Mon Oct 30 07:49:29 GMT 2006
Hi!
>>> That was it. I found it 2 minutes after I posted. Why would anyone do
>>> that? If you are trying to keep nasty programs out, then surely they'll
>>> just use /var/tmp instead.
>>> Confused by why this was set this way...
>> Some do this to have 'protection' ... but somehow people know how to get
>> around this anyway. If you exec a script with perl /tmp/blah it still
>> works.
> Once upon a php-weakness,
> I discovered some new and interesting binaries in /tmp.
> So I thought that if webserver-writeable directories does not need to be
> mounted executable, why should they?
Then i assume you also have it mounted nosuid ? Anyway, this is offtopic i
guess here :)
Bye,
Raymond.
More information about the MailScanner
mailing list