Git-Mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2024-10-01 08:25:45 -04:00
Code Issues Packages Projects Releases Wiki Activity

Clarify

Browse Source
This commit is contained in:
Raja Grewal 2024-07-28 21:57:25 +10:00
parent f699eb02a2
commit 9fbee9fc82
No known key found for this signature in database
GPG Key ID: 92CA473C156B64C4
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
usr/lib/sysctl.d/990-security-misc.conf
View File

@ -195,8 +195,8 @@ vm.max_map_count=1048576
## Disable the miscellaneous binary format virtual file system to prevent unintended code execution.
## Prevents registering interpreters for various binary formats based on a magic number or their file extension.
## If arbitrary executable file formats are recognised, they will be passed to relevant user space applications.
## These interpreters will run with root permissions when a setuid binary is owned by root.
## Otherwise arbitrary executables with recognized file formats will be passed to relevant user space applications.
## These interpreters will the run with root permissions when a setuid binary is owned by root.
## Can stop maliciously crafted files with specific file extensions from automatically executing.
## Breaks many scripts that do not have appropriate shebang interpreter directives (#!/bin/...).
##