#11179 NORM 1.75-so: [CL2]Cannot execute shell in external HDD or flash drive
Zarro Boogs per Child
bugtracker at laptop.org
Fri Aug 26 02:54:55 EDT 2011
#11179: [CL2]Cannot execute shell in external HDD or flash drive
---------------------------------+------------------------------------------
Reporter: garysu | Owner: jnettlet
Type: defect | Status: closed
Priority: normal | Milestone: 1.75-software
Component: distro | Version: 1.75-B1
Resolution: wontfix | Keywords:
Next_action: no action | Verified: 0
Deployment_affected: | Blockedby:
Blocking: |
---------------------------------+------------------------------------------
Changes (by Quozl):
* status: new => closed
* resolution: => wontfix
* next_action: never set => no action
* component: x window system => distro
Comment:
This is a new security feature from Fedora, we won't be fixing it.
It is evident in /proc/mounts:
{{{
/dev/sda1 /media/701D-D0DA vfat
rw,nosuid,nodev,relatime,uid=500,gid=500,fmask=0022,dmask=0077,codepage=cp437,iocharset=iso8859-1,shortname=mixed,showexec,utf8,flush,errors
=remount-ro 0 0
}}}
The showexec flag is present.
Workaround one is:
{{{
mount -o remount -o noshowexec /dev/sda1
}}}
Where * is the mount point. This turns off the feature, but it will come
back next time.
Workaround two is to invoke the shell using bash:
{{{
bash /media/*/file.sh
}}}
Where * is the mount point, and file.sh is the script to be executed.
This should always work, but if the script executes other scripts on the
drive the script must also be changed.
Workaround three is to reformat the USB HDD or USB flash drive as ext2,
ext3, or ext4, for exclusive use by Linux. This should allow Linux to
mount the drive with exec flag.
Previous discussion:
http://lists.laptop.org/pipermail/devel/2011-April/031820.html
--
Ticket URL: <http://dev.laptop.org/ticket/11179#comment:1>
One Laptop Per Child <http://laptop.org/>
OLPC bug tracking system
More information about the Bugs
mailing list