Date: Sat, 6 Sep 1997 23:08:02 -0400 (EDT) From: Brian Mitchell <brian@firehouse.net> To: Sean Eric Fagan <sef@Kithrup.COM> Cc: security@freebsd.org Subject: Re: procfs take II Message-ID: <Pine.BSI.3.95.970906230726.16448A-100000@shell.firehouse.net> In-Reply-To: <199709061749.KAA25203@kithrup.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, 6 Sep 1997, Sean Eric Fagan wrote: > In article <Pine.NEB.3.96.970906024915.163A-100000.kithrup.freebsd.security@apocalypse.saturn.net> you write: > >Here is a simple patch, it disallows writes to pid 1's mem node if > >securelevel is > 0 (diff is based on 2.2.1 box with the securelevel fix > >applied): > > Insufficient -- PTRACE_ATTACH allows the same hole. ptrace_attach was fixed in 2.2.2 > > Also, the only place that kind of change really needs to go is in > procfs_open(), when the file is originally opened. If securelevel > 0, then > init should be read-only (or not even readable at all). A more general way > of doing this should be provided, I think, rather than special-casing pid 1. > > Sean. > I agree, but the ptrace_attach was fixed with this same sorta thing.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSI.3.95.970906230726.16448A-100000>