[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Bug#889098: enforce fs.protected_hardlinks in sysctl.d by default

Hi Antoine (and kernel and security teams),
  Thanks for giving me the background as it's a kernel vulnerability not a Procps one I wasn't aware of it.

The change to Procps is pretty simple but given that you need to be running a non Debian kernel without this parameter what's groups' opinion of the urgency?

I can throw in the sysctl configuration file and upload a release this weekend if the consensus is it's needed or wait for the next upstream Procps release which would be a month or so away.

 - Craig




--
Craig Small             https://dropbear.xyz/     csmall at : dropbear.xyz
Debian GNU/Linux        https://www.debian.org/   csmall at : debian.org
Mastodon: @smallsees@social.dropbear.xyz             Twitter: @smallsees  
GPG fingerprint:      5D2F B320 B825 D939 04D2  0519 3938 F96B DF50 FEA5
Reply to: