mirror of
https://github.com/Kicksecure/security-misc.git
synced 2024-12-23 01:23:36 +07:00
Clarify
This commit is contained in:
parent
f699eb02a2
commit
9fbee9fc82
@ -195,8 +195,8 @@ vm.max_map_count=1048576
|
||||
|
||||
## Disable the miscellaneous binary format virtual file system to prevent unintended code execution.
|
||||
## Prevents registering interpreters for various binary formats based on a magic number or their file extension.
|
||||
## If arbitrary executable file formats are recognised, they will be passed to relevant user space applications.
|
||||
## These interpreters will run with root permissions when a setuid binary is owned by root.
|
||||
## Otherwise arbitrary executables with recognized file formats will be passed to relevant user space applications.
|
||||
## These interpreters will the run with root permissions when a setuid binary is owned by root.
|
||||
## Can stop maliciously crafted files with specific file extensions from automatically executing.
|
||||
## Breaks many scripts that do not have appropriate shebang interpreter directives (#!/bin/...).
|
||||
##
|
||||
|
Loading…
Reference in New Issue
Block a user