Re: [PATCH] Capability theft prevention

Alan Cox (alan@lxorguk.ukuu.org.uk)
Sun, 7 Mar 1999 21:57:20 +0000 (GMT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Alan Cox: "Re: BUG in videodev.c [PATCH]"
Previous message: David Monniaux: "APM BIOS"
In reply to: Sean Hunter: "Re: Lets get this right (WAS RE:MOSIX and kernel mods)"
Next in thread: Albert D. Cahalan: "Re: Lets get this right (WAS RE:MOSIX and kernel mods)"

> /proc/#/mem is protected from attack because of the ptracing requirement.
> Indirect attacks will still be successful, for example through file system,
> IPC etc, but fixing those are beyond my skills.

There is one other bad one, in fact its even worse than just capabilities.
The procfs doesnt check dumpable in places it should.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: Alan Cox: "Re: BUG in videodev.c [PATCH]"
Previous message: David Monniaux: "APM BIOS"
In reply to: Sean Hunter: "Re: Lets get this right (WAS RE:MOSIX and kernel mods)"
Next in thread: Albert D. Cahalan: "Re: Lets get this right (WAS RE:MOSIX and kernel mods)"