Re: kernel ptrace bug
On Wednesday 19 March 2003 09:18, Martynas Domarkas wrote:
> Grsecurity patch can limit ordinary user use ptrace. Can it help avoid
> ptrace exploit?
>
>
> Martynas
yes for the most part limiting access to /proc/self/exe breaks the exploit.
http://www.hardrock.org/kernel/2.4.20/linux-2.4.20-ptrace.patch
The patch seems to remove all access to ptrace calls even for root though, I
don't see how this _fixes_ anything other than breaking the exploit.
didn't look into that much so correct me if I'm wrong.
--
------------------------------
Orlando Padilla
http://www.g0thead.com/xbud.asc
------------------------------
Reply to: