All Questions
5 questions
4votes
1answer
202views
Preserve evidence of intrusion / deleted executable?
If you are faced with a non-root remote command execution vulnerability, and there is a foreign executable that's running on your Linux system from a user with only non-administrator privileges, what'...
- 3,333
0votes
4answers
14kviews
noexec on /tmp and /var/tmp directory
Our client servers are running old version of jboss (Jboss 4.0) which has lots of known vulnerabilities. Result is that the server is hacked and we are seeing some unknown executable running from /tmp,...
- 3,376
61votes
5answers
71kviews
How to test whether a Linux binary was compiled as position independent code?
I recently learned that (at least on Fedora and Red Hat Enterprise Linux), executable programs that are compiled as Position Independent Executables (PIE) receive stronger address space randomization (...
- 4,208
34votes
5answers
2kviews
Execution of possibly harmful program on Linux
I'm writing a program that will test programs written by students. I'm afraid that I can't trust them and I need to make sure that it won't end up badly for the computer running it. I was thinking ...
- 1,591
19votes
3answers
59kviews
File permission execute only
How can I set file to be executable only to other users but not readable/writable, the reason for this I'm executing something with my username but I don't want to give out the password. I tried : ...
- 964
