[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Using sgid binaries to defend against LD_PRELOAD/ptrace()

Josselin Mouette [2008-04-30 10:17 +0200]:
> This looks indeed like a reasonable alternative if we don't get the
> noptrace group ; it would be easy to patch gksu/gnome-keyring/... with
> the same stuff.

I agree, and give the other possible attack scenarios it doesn't make
much sense to throw a lot of effort (with noptrace group, etc.) at it.


Martin Pitt                        | http://www.piware.de
Ubuntu Developer (www.ubuntu.com)  | Debian Developer  (www.debian.org)

Attachment: signature.asc
Description: Digital signature

Reply to: