I'm setting up a new LAMP server with Centos 5.2;
in the past, whilst discussing undesirable intrusions through like CMS
vulnerabilities it was suggested to set up /tmp ion a separate partition,
set as non executable,
is that still a good idea ? how much space to assign to /tmp on a 150GB HD?
On Thu, Jul 24, 2008, Voytek Eymont wrote:
how do I make it non executable ?
Mount it with the 'noexec' option. It goes in the same column of
/etc/fstab as other options like 'auto' and 'noauto'.
man mount has the details of various filesystem mount options, under
the -o flag section.
-Mary
--
On Thu, Jul 24, 2008 at 09:37:56PM +1000, Mary Gardiner wrote:
On Thu, Jul 24, 2008, Voytek Eymont wrote:
how do I make it non executable ?
Mount it with the 'noexec' option. It goes in the same column of
/etc/fstab as other options like 'auto' and 'noauto'.
man mount has the details of
On Fri, July 25, 2008 7:37 am, Alex Samad wrote:
On Thu, Jul 24, 2008 at 09:37:56PM +1000, Mary Gardiner wrote:
On Thu, Jul 24, 2008, Voytek Eymont wrote:
one thing to be careful when doing this, is some deb's/rpm's expect /tmp
to exec (run into this problem with apt and a noexec /tmp)
The problem of course is that /tmp is a known world-writable location where
attackers can upload malicious files (if they find ways to do that). Using a
partition gives you a fairly low-level way to stop them from being able to
execute those files, so I guess the answer is how paranoid are you
Voytek Eymont [EMAIL PROTECTED] writes:
I'm setting up a new LAMP server with Centos 5.2;
in the past, whilst discussing undesirable intrusions through like CMS
vulnerabilities it was suggested to set up /tmp ion a separate partition,
set as non executable,
is that still a good idea ?
As