Date: Sun, 27 Aug 2000 16:34:00 -0400 (EDT) From: Robert Watson <rwatson@FreeBSD.org> To: freebsd-security@FreeBSD.org Cc: phk@FreeBSD.org, green@FreeBSD.org Subject: Re: Review request: replacing p_trespass(), modifications to vaccess() Message-ID: <Pine.NEB.3.96L.1000827163230.74902A-100000@fledge.watson.org> In-Reply-To: <Pine.NEB.3.96L.1000827123021.72392A-100000@fledge.watson.org>
next in thread | previous in thread | raw e-mail | index | archive | help
To those reviewing, I've uploaded new versions of the patches since the post, replacing a few more PRISON_CHEK() calls, and merging in a few other changes from my tree. One interesting thing to consider is the different in access control choices between ptrace() (relatively liberal) and ktrace() (slightly less so). ptrace() is more concerned with the process being setugid, whereas ktrace is concerned with differences in credentials. Given that the functionality is very similar, we should probably combine the two access control checks, and decide which is more appropriate for our needs. Robert N M Watson robert@fledge.watson.org http://www.watson.org/~robert/ PGP key fingerprint: AF B5 5F FF A6 4A 79 37 ED 5F 55 E9 58 04 6A B1 TIS Labs at Network Associates, Safeport Network Services To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.NEB.3.96L.1000827163230.74902A-100000>