Date: Mon, 11 Aug 2003 07:44:38 +0100 From: Bruce M Simpson <bms@spc.org> To: Jason Dambrosio <jason@wiz.cx> Cc: FreeBSD Security Advisories <security@freebsd.org> Subject: Re: FreeBSD Security Advisory FreeBSD-SA-03:09.signal Message-ID: <20030811064438.GG31845@spc.org> In-Reply-To: <20030811063316.GA85000@tekgenesis.net> References: <200308110257.h7B2v6YJ061278@freefall.freebsd.org> <20030811063316.GA85000@tekgenesis.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, Aug 10, 2003 at 08:33:16PM -1000, Jason Dambrosio wrote: > Wouldn't a possible workaround be, to load a kld module that would > replace the ptrace(2) system call with a patched one? I remember doing > such a trick for modifying other system calls using kld modules... That isn't really a solution; more of a band-aid. Besides, if someone compromises the system in some other way, they can just remove your module or unload it. Unless you're a big securelevels fan. BMS
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030811064438.GG31845>