shaman wrote:Hi.
Can anyone explain what is TPE?
A small "theoretical" example:
a linux workstation with 2.4 kernel. "turd" is username in this "linux".
The "turd"'s writable filesystems is "mounted with noexec"...
"turd" download a "local kernel panic" exploit. "turd" hate the admin.
If "turd" execute this exploit.... (example /lib/....so ~/exploit).
linux is killed.
But if the kernel is:
2.4.x-grsec with TPE and tpe_gid (example 2067)...
and "turd" execute now the exploit: (example /lib/...so ~/exploit) then
"segmentation fault", and in logfile : denied untrusted exec of "~/exploit":"turd"'s uid...
Posted: Mon Aug 02, 2004 4:04 am