Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email email@example.com
Re: sysctl knob to let sugid processes dump core (pr 15994)
From: Pavel Cahyna (pcah8322artax.karlin.mff.cuni.cz)
Date: Thu Jan 26 2006 - 01:36:30 CST
On Wed, Jan 25, 2006 at 09:47:37PM -0500, Thor Lancelot Simon wrote:
> On Thu, Jan 26, 2006 at 12:14:50AM +0100, Pavel Cahyna wrote:
> > and data on the system". That's why it disables changing of file flags,
> > /dev/mem, and mounted disks. ptrace() or coredumps have nothing to do with
> > the TCB.
> I'll respond to the rest of your message later, but there's one thing here
> that's of note. The reason ptrace() of init is prohibited is expressly
> to protect the TCB: attach a debugger to init, and you can yank securelevel
> around -- game over.
Yes, this sounds reasonable.