From owner-freebsd-arch@FreeBSD.ORG Wed Dec 31 02:47:32 2014 Return-Path: Delivered-To: freebsd-arch@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 35947C31 for ; Wed, 31 Dec 2014 02:47:32 +0000 (UTC) Received: from na01-bn1-obe.outbound.protection.outlook.com (mail-bn1bn0102.outbound.protection.outlook.com [157.56.110.102]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (Client CN "mail.protection.outlook.com", Issuer "MSIT Machine Auth CA 2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id D1AC62BFC for ; Wed, 31 Dec 2014 02:47:31 +0000 (UTC) Received: from CO2PR05CA039.namprd05.prod.outlook.com (10.141.241.167) by BLUPR05MB433.namprd05.prod.outlook.com (10.141.27.140) with Microsoft SMTP Server (TLS) id 15.1.49.12; Tue, 30 Dec 2014 23:14:45 +0000 Received: from BY2FFO11FD028.protection.gbl (2a01:111:f400:7c0c::148) by CO2PR05CA039.outlook.office365.com (2a01:111:e400:1429::39) with Microsoft SMTP Server (TLS) id 15.1.49.12 via Frontend Transport; Tue, 30 Dec 2014 23:14:44 +0000 Received: from P-EMF02-SAC.jnpr.net (66.129.239.16) by BY2FFO11FD028.mail.protection.outlook.com (10.1.15.217) with Microsoft SMTP Server (TLS) id 15.1.49.13 via Frontend Transport; Tue, 30 Dec 2014 23:14:44 +0000 Received: from magenta.juniper.net (172.17.27.123) by P-EMF02-SAC.jnpr.net (172.24.192.21) with Microsoft SMTP Server (TLS) id 14.3.146.0; Tue, 30 Dec 2014 15:14:43 -0800 Received: from chaos.jnpr.net (chaos.jnpr.net [172.21.16.28]) by magenta.juniper.net (8.11.3/8.11.3) with ESMTP id sBUNEhW04498; Tue, 30 Dec 2014 15:14:43 -0800 (PST) (envelope-from sjg@juniper.net) Received: from chaos (localhost [127.0.0.1]) by chaos.jnpr.net (Postfix) with ESMTP id 0CC62580A3; Tue, 30 Dec 2014 15:14:43 -0800 (PST) To: Shawn Webb Subject: Re: Disabling ptrace In-Reply-To: <2246813.ih6odxTDOy@shawnwebb-laptop> References: <20141230111941.GE42409@kib.kiev.ua> <29058.1419970932@chaos> <20141230204445.GM42409@kib.kiev.ua> <2246813.ih6odxTDOy@shawnwebb-laptop> Comments: In-reply-to: Shawn Webb message dated "Tue, 30 Dec 2014 15:52:25 -0500." From: "Simon J. Gerraty" X-Mailer: MH-E 8.0.3; nmh 1.3; GNU Emacs 22.3.1 Date: Tue, 30 Dec 2014 15:14:43 -0800 Message-ID: <11126.1419981283@chaos> MIME-Version: 1.0 Content-Type: text/plain X-EOPAttributedMessage: 0 Received-SPF: SoftFail (protection.outlook.com: domain of transitioning juniper.net discourages use of 66.129.239.16 as permitted sender) Authentication-Results: spf=softfail (sender IP is 66.129.239.16) smtp.mailfrom=sjg@juniper.net; X-Forefront-Antispam-Report: CIP:66.129.239.16; CTRY:US; IPV:NLI; EFV:NLI; SFV:NSPM; SFS:(10019020)(6009001)(24454002)(199003)(189002)(77156002)(50226001)(62966003)(97736003)(33716001)(92566001)(89996001)(31966008)(77096005)(68736005)(57986006)(2950100001)(107046002)(76506005)(4396001)(19580395003)(69596002)(221733001)(110136001)(6806004)(81156004)(106466001)(46102003)(20776003)(47776003)(64706001)(21056001)(105596002)(48376002)(120916001)(50466002)(50986999)(76176999)(1411001)(99396003)(93886004)(84676001)(19580405001)(87936001)(117636001)(86362001)(42262002)(62816006); DIR:OUT; SFP:1102; SCL:1; SRVR:BLUPR05MB433; H:P-EMF02-SAC.jnpr.net; FPR:; SPF:SoftFail; MLV:sfv; PTR:InfoDomainNonexistent; A:1; MX:1; LANG:en; X-Microsoft-Antispam: UriScan:; X-Microsoft-Antispam: BCL:0;PCL:0;RULEID:;SRVR:BLUPR05MB433; X-Forefront-PRVS: 04410E544A X-OriginatorOrg: juniper.net X-MS-Exchange-CrossTenant-OriginalArrivalTime: 30 Dec 2014 23:14:44.0046 (UTC) X-MS-Exchange-CrossTenant-Id: bea78b3c-4cdb-4130-854a-1d193232e5f4 X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=bea78b3c-4cdb-4130-854a-1d193232e5f4; Ip=[66.129.239.16] X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem X-MS-Exchange-Transport-CrossTenantHeadersStamped: BLUPR05MB433 Cc: Konstantin Belousov , Jilles Tjoelker , freebsd-arch@freebsd.org X-BeenThere: freebsd-arch@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: Discussion related to FreeBSD architecture List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 31 Dec 2014 02:47:32 -0000 Shawn Webb wrote: > I asked about use case mainly because the applications I'm familiar with that > care about disabling debugging facilities are ones that are trying to deter > reverse engineering. Which is silly. Yes, we only do it on the apps responsible for verifying signatures and the like.