[rsbac] can't permit execute with FF for "power users"

Bencsath Boldizsar boldi at datacontact.hu
Mon Sep 25 14:45:43 CEST 2006

> Power user:
> pingtomi at pingtomi:/tmp$ sh x.sh
> total 64
> -rw------- 1 root     root       625 2006-09-25 06:25 file2Go3kb
> -rw------- 1 root     root       626 2006-09-24 06:25 fileDZCLR0
> ˙˙

doing 'sh' is interpreting a text file as a script. It is not executing 
the script. Of course, you can sh x.sh even if x.sh does not have 
executable mark.

And yes, there might be possible ways to bypass security measures with 
tricks like that for non-script files also.

More information about the rsbac mailing list