Y
Hacker News
new
|
ask
|
show
|
jobs
by
otterley
183 days ago
Typical defense against this is to mount all user-writable filesystems as `noexec` but unfortunately most OSes don't do that out of the box.
3 comments
mr_mitm
183 days ago
It could have created a bash alias then. And I don't think a dev wants to be restricted in creating executables. Again, if a dev can do it, so can the malware.
link
dividuum
183 days ago
I remember you could trivially circumvent that with „/lib/ld-linux.so <executable>“. Does that no longer work?
link
lights0123
183 days ago
noexec now prevents mmaping files on that filesystem as executable.
link
LtWorf
183 days ago
Kinda hard to work as a software developer then.
link