From owner-freebsd-arch@FreeBSD.ORG  Wed Dec 31 02:47:32 2014
Return-Path: <owner-freebsd-arch@FreeBSD.ORG>
Delivered-To: freebsd-arch@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id 35947C31
 for <freebsd-arch@freebsd.org>; Wed, 31 Dec 2014 02:47:32 +0000 (UTC)
Received: from na01-bn1-obe.outbound.protection.outlook.com
 (mail-bn1bn0102.outbound.protection.outlook.com [157.56.110.102])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits))
 (Client CN "mail.protection.outlook.com",
 Issuer "MSIT Machine Auth CA 2" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id D1AC62BFC
 for <freebsd-arch@freebsd.org>; Wed, 31 Dec 2014 02:47:31 +0000 (UTC)
Received: from CO2PR05CA039.namprd05.prod.outlook.com (10.141.241.167) by
 BLUPR05MB433.namprd05.prod.outlook.com (10.141.27.140) with Microsoft SMTP
 Server (TLS) id 15.1.49.12; Tue, 30 Dec 2014 23:14:45 +0000
Received: from BY2FFO11FD028.protection.gbl (2a01:111:f400:7c0c::148) by
 CO2PR05CA039.outlook.office365.com (2a01:111:e400:1429::39) with Microsoft
 SMTP Server (TLS) id 15.1.49.12 via Frontend Transport; Tue, 30 Dec 2014
 23:14:44 +0000
Received: from P-EMF02-SAC.jnpr.net (66.129.239.16) by
 BY2FFO11FD028.mail.protection.outlook.com (10.1.15.217) with Microsoft SMTP
 Server (TLS) id 15.1.49.13 via Frontend Transport; Tue, 30 Dec 2014 23:14:44
 +0000
Received: from magenta.juniper.net (172.17.27.123) by P-EMF02-SAC.jnpr.net
 (172.24.192.21) with Microsoft SMTP Server (TLS) id 14.3.146.0; Tue, 30 Dec
 2014 15:14:43 -0800
Received: from chaos.jnpr.net (chaos.jnpr.net [172.21.16.28])	by
 magenta.juniper.net (8.11.3/8.11.3) with ESMTP id sBUNEhW04498;	Tue, 30 Dec
 2014 15:14:43 -0800 (PST)	(envelope-from sjg@juniper.net)
Received: from chaos (localhost [127.0.0.1])	by chaos.jnpr.net (Postfix) with
 ESMTP id 0CC62580A3;	Tue, 30 Dec 2014 15:14:43 -0800 (PST)
To: Shawn Webb <lattera@gmail.com>
Subject: Re: Disabling ptrace
In-Reply-To: <2246813.ih6odxTDOy@shawnwebb-laptop>
References: <20141230111941.GE42409@kib.kiev.ua> <29058.1419970932@chaos>
 <20141230204445.GM42409@kib.kiev.ua> <2246813.ih6odxTDOy@shawnwebb-laptop>
Comments: In-reply-to: Shawn Webb <lattera@gmail.com>
 message dated "Tue, 30 Dec 2014 15:52:25 -0500."
From: "Simon J. Gerraty" <sjg@juniper.net>
X-Mailer: MH-E 8.0.3; nmh 1.3; GNU Emacs 22.3.1
Date: Tue, 30 Dec 2014 15:14:43 -0800
Message-ID: <11126.1419981283@chaos>
MIME-Version: 1.0
Content-Type: text/plain
X-EOPAttributedMessage: 0
Received-SPF: SoftFail (protection.outlook.com: domain of transitioning
 juniper.net discourages use of 66.129.239.16 as permitted sender)
Authentication-Results: spf=softfail (sender IP is 66.129.239.16)
 smtp.mailfrom=sjg@juniper.net; 
X-Forefront-Antispam-Report: CIP:66.129.239.16; CTRY:US; IPV:NLI; EFV:NLI;
 SFV:NSPM;
 SFS:(10019020)(6009001)(24454002)(199003)(189002)(77156002)(50226001)(62966003)(97736003)(33716001)(92566001)(89996001)(31966008)(77096005)(68736005)(57986006)(2950100001)(107046002)(76506005)(4396001)(19580395003)(69596002)(221733001)(110136001)(6806004)(81156004)(106466001)(46102003)(20776003)(47776003)(64706001)(21056001)(105596002)(48376002)(120916001)(50466002)(50986999)(76176999)(1411001)(99396003)(93886004)(84676001)(19580405001)(87936001)(117636001)(86362001)(42262002)(62816006);
 DIR:OUT; SFP:1102; SCL:1; SRVR:BLUPR05MB433; H:P-EMF02-SAC.jnpr.net; FPR:;
 SPF:SoftFail; MLV:sfv; PTR:InfoDomainNonexistent; A:1; MX:1; LANG:en; 
X-Microsoft-Antispam: UriScan:;
X-Microsoft-Antispam: BCL:0;PCL:0;RULEID:;SRVR:BLUPR05MB433;
X-Forefront-PRVS: 04410E544A
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 30 Dec 2014 23:14:44.0046 (UTC)
X-MS-Exchange-CrossTenant-Id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=bea78b3c-4cdb-4130-854a-1d193232e5f4; Ip=[66.129.239.16]
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BLUPR05MB433
Cc: Konstantin Belousov <kostikbel@gmail.com>,
 Jilles Tjoelker <jilles@stack.nl>, freebsd-arch@freebsd.org
X-BeenThere: freebsd-arch@freebsd.org
X-Mailman-Version: 2.1.18-1
Precedence: list
List-Id: Discussion related to FreeBSD architecture <freebsd-arch.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-arch>,
 <mailto:freebsd-arch-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-arch/>
List-Post: <mailto:freebsd-arch@freebsd.org>
List-Help: <mailto:freebsd-arch-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-arch>,
 <mailto:freebsd-arch-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 31 Dec 2014 02:47:32 -0000

Shawn Webb <lattera@gmail.com> wrote:
> I asked about use case mainly because the applications I'm familiar with that 
> care about disabling debugging facilities are ones that are trying to deter 
> reverse engineering. Which is silly.

Yes, we only do it on the apps responsible for verifying signatures and
the like.