|
|
|
|
|
|
by tremon
43 days ago
|
|
|
I can't read the original article because Github is having a very bad day, but I don't really understand the attack model here. If a process has access to any tool that isn't statically linked, the process already has access to ld-linux.so and can therefore execute any binary it has read access to. "restricting access" by enumerating the binary paths a program can execute is not a very useful restriction by any means. |
|
|
> execute any binary it has read access to
Maybe I'm missing something, but in these restricted environments, why would the system have read access to binaries it doesn't need or use?