to
disallow this?
I remounted /tmp and /home with noexec,nosuid.
Thanks,
G.
- Original Message -
From: JP [EMAIL PROTECTED]
To: users@httpd.apache.org
Sent: Friday, June 02, 2006 5:23 PM
Subject: RE: [EMAIL PROTECTED] how to prevent an executing from /tmp
Someone often uploads files
Hi!
Someone often uploads files to /tmp and then executing in on the server with
webserver user priveleges. How to prevent it?
Thanks,
G.
-
The official User-To-User support forum of the Apache HTTP Server Project.
See
Hi
Will this break file uploads using web forms?
Med vänliga hälsningar
Stefan Midjich aka nocturnal
[Swehack] http://swehack.se
[EMAIL PROTECTED] wrote:
Hi!
Someone often uploads files to /tmp and then executing in on the server with
webserver user priveleges. How to prevent it?
Someone often uploads files to /tmp and then executing in on the server with
webserver user priveleges. How to prevent it?
I personnaly always put /tmp on its own partition and mount it with
the noexec option.
Regards,
Gaël
Someone often uploads files to /tmp and then executing in on the server
with webserver user priveleges. How to prevent it?
Mount /tmp, and anywhere else the server user has write access to,
on a filesystem with noexec set.
--
Nick Kew
Someone often uploads files to /tmp and then executing in on the server
with
webserver user priveleges. How to prevent it?
How about changing the umask of the webuser?
JP
-
The official User-To-User support forum of the
