ExecutableBit

Differences between revisions 9 and 10
Revision 9 as of 2010-11-07 18:33:11
Size: 126
Editor: c-75-66-201-6
Comment:
Revision 10 as of 2010-11-07 18:45:36
Size: 1373
Editor: c-76-105-168-175
Comment:
Deletions are marked like this. Additions are marked like this.
Line 1: Line 1:
Software in Ubuntu [[SecurityTeam/Policies#ExecutePermissionBitRequired|needs to be "executable"]] (sometimes called "trusted"), both in the sense that the software is a program, and that it is marked as an "executable file" via [[https://help.ubuntu.com/community/FilePermissions|file permissions]]. Normal software is available for installation via the [[https://wiki.ubuntu.com/SoftwareCenter|Software Center]]; this is the primary source of software in Ubuntu.
Line 2: Line 3:
Files downloaded from other locations are not marked as "executable" since they did not get installed via a trusted software repository. Because of this, attempting to open downloaded files that are software will fail. The primary reason for blocking this software is to help unsuspecting users avoid [[http://en.wikipedia.org/wiki/Malware|malware]] (i.e. malicious software like trojan horses, worms, and viruses).
Line 3: Line 5:


























Ubuntu Policy requires that [[https://wiki.ubuntu.com/SecurityTeam/Policies#Execute-Permission%20Bit%20Required|software not marked as executable not be runnable]]. One of the most common ways this happens is by having a package ship a {{{.desktop}}} file for a Mime``Type which executes the target file (.EXE, .JAR, etc). This is not allowed unless the target file is already executable (or installed by a trusted software repository).
Line 33: Line 9:
----
CategoryGtkThemes

Software in Ubuntu needs to be "executable" (sometimes called "trusted"), both in the sense that the software is a program, and that it is marked as an "executable file" via file permissions. Normal software is available for installation via the Software Center; this is the primary source of software in Ubuntu.

Files downloaded from other locations are not marked as "executable" since they did not get installed via a trusted software repository. Because of this, attempting to open downloaded files that are software will fail. The primary reason for blocking this software is to help unsuspecting users avoid malware (i.e. malicious software like trojan horses, worms, and viruses).

Ubuntu Policy requires that software not marked as executable not be runnable. One of the most common ways this happens is by having a package ship a .desktop file for a MimeType which executes the target file (.EXE, .JAR, etc). This is not allowed unless the target file is already executable (or installed by a trusted software repository).

Read user comments.

Security/ExecutableBit (last edited 2014-05-01 12:47:50 by fitojb)