From: Alejandro Colomar <alx@kernel.org>
To: Siddhesh Poyarekar <siddhesh@gotplt.org>
Cc: linux-man@vger.kernel.org, alx.manpages@gmail.com
Subject: Re: [PATCH] ldd: Do not recommend binutils as the safer option
Date: Mon, 16 Oct 2023 12:08:10 +0200 [thread overview]
Message-ID: <ZS0LipiiOBsntjmb@debian> (raw)
In-Reply-To: <20231016061923.105814-1-siddhesh@gotplt.org>
[-- Attachment #1: Type: text/plain, Size: 1630 bytes --]
Hi Siddhesh,
On Mon, Oct 16, 2023 at 02:19:23AM -0400, Siddhesh Poyarekar wrote:
> The binutils security policy[1] states that diagnostic tools should not
> be expected to be safe without sandboxing, so it doesn't make sense to
> recommend it as the alternative to ldd, especially since it is not a
> drop-in replacement. Recommend sandboxing instead, since that is in
> fact the safest known way at the moment to deal with untrusted binaries.
>
> [1] https://sourceware.org/git/?p=binutils-gdb.git;a=blob;f=binutils/SECURITY.txt
>
> Signed-off-by: Siddhesh Poyarekar <siddhesh@gotplt.org>
> ---
> man1/ldd.1 | 14 +-------------
> 1 file changed, 1 insertion(+), 13 deletions(-)
>
> diff --git a/man1/ldd.1 b/man1/ldd.1
> index cca96ec4d..f86798566 100644
> --- a/man1/ldd.1
> +++ b/man1/ldd.1
> @@ -94,20 +94,8 @@ Thus, you should
> .I never
> employ
> .B ldd
> -on an untrusted executable,
> +on an untrusted executable without appropriate sandboxing,
> since this may result in the execution of arbitrary code.
> -A safer alternative when dealing with untrusted executables is:
> -.PP
> -.in +4n
> -.EX
> -$ \fBobjdump \-p /path/to/program | grep NEEDED\fP
Should we maybe keep this example, and suggest using it with sandboxing?
Or is it not useful anymore?
Thanks,
Alex
> -.EE
> -.in
> -.PP
> -Note, however, that this alternative shows only the direct dependencies
> -of the executable, while
> -.B ldd
> -shows the entire dependency tree of the executable.
> .SH OPTIONS
> .TP
> .B \-\-version
> --
> 2.41.0
--
<https://www.alejandro-colomar.es/>
[-- Attachment #2: signature.asc --]
[-- Type: application/pgp-signature, Size: 833 bytes --]
next prev parent reply other threads:[~2023-10-16 10:08 UTC|newest]
Thread overview: 8+ messages / expand[flat|nested] mbox.gz Atom feed top
2023-10-16 6:19 [PATCH] ldd: Do not recommend binutils as the safer option Siddhesh Poyarekar
2023-10-16 10:08 ` Alejandro Colomar [this message]
2023-10-16 13:28 ` Siddhesh Poyarekar
2023-10-16 13:33 ` Alejandro Colomar
2023-10-16 13:46 ` Siddhesh Poyarekar
2023-10-17 18:19 ` Adhemerval Zanella Netto
2023-10-16 10:47 ` Mike Frysinger
2023-10-16 11:22 ` Alejandro Colomar
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=ZS0LipiiOBsntjmb@debian \
--to=alx@kernel.org \
--cc=alx.manpages@gmail.com \
--cc=linux-man@vger.kernel.org \
--cc=siddhesh@gotplt.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox