Bug#712740: linux-image-3.9-1-amd64: please turn off ptrace protection

To: Vincent Lefevre <vincent@vinc17.net>, 712740@bugs.debian.org
Subject: Bug#712740: linux-image-3.9-1-amd64: please turn off ptrace protection
From: Ben Hutchings <ben@decadent.org.uk>
Date: Wed, 19 Jun 2013 04:33:12 +0100
Message-id: <[🔎] 1371612792.3495.145.camel@deadeye.wl.decadent.org.uk>
Reply-to: Ben Hutchings <ben@decadent.org.uk>, 712740@bugs.debian.org
In-reply-to: <[🔎] 20130619023455.GA12792@xvii.vinc17.org>
References: <[🔎] 20130619023455.GA12792@xvii.vinc17.org>

On Wed, 2013-06-19 at 04:34 +0200, Vincent Lefevre wrote:
> Package: src:linux
> Version: 3.9.6-1
> Severity: wishlist
> 
> As of 3.9, the Debian kernel includes Yama, which switches on ptrace
> protection by default. This is a bad idea, because:
[...]

Agreed; this is a poor default.  I kind of thought this was opt-in like
the other LSMs, but as it's designed to stack it doesn't depend on the
'security' kernel parameter.  I'll change that.

Ben.

-- 
Ben Hutchings
Lowery's Law:
             If it jams, force it. If it breaks, it needed replacing anyway.

Attachment: signature.asc
Description: This is a digitally signed message part

Reply to:

References:
- Bug#712740: linux-image-3.9-1-amd64: please turn off ptrace protection
  - From: Vincent Lefevre <vincent@vinc17.net>

Prev by Date: Bug#712740: linux-image-3.9-1-amd64: please turn off ptrace protection
Next by Date: Processed: tagging 712740
Previous by thread: Bug#712740: linux-image-3.9-1-amd64: please turn off ptrace protection
Next by thread: Bug#712740: marked as done (linux-image-3.9-1-amd64: please turn off ptrace protection)
Index(es):
- Date
- Thread