>I've been using a mechanism that prevents the running the arbitrary
>executables on my systems. I require a flag bit to be set for an
>executable to be run -- so if script kiddie uploads or creates
>a binary executable it wont run, unless I approve it by setting the
>flag. At the moment I let shell scripts slide which will leave you
>vunerable to perl -- but that could be easily changed.
Interesting concept, but I guess it would get only the dumbest script
kiddies. Also, more and more exploits seem to be released on perl to make
them 'cross platform compatible'.
---Mike
**********************************************************************
Mike Tancsa, Network Admin * mike@sentex.net
Sentex Communications Corp, * http://www.sentex.net/mike
Cambridge, Ontario * 01.519.651.3400
Canada *
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message