Skip site navigation (1)Skip section navigation (2)
Date:      Sat, 6 Sep 1997 23:08:02 -0400 (EDT)
From:      Brian Mitchell <brian@firehouse.net>
To:        Sean Eric Fagan <sef@Kithrup.COM>
Cc:        security@freebsd.org
Subject:   Re: procfs take II
Message-ID:  <Pine.BSI.3.95.970906230726.16448A-100000@shell.firehouse.net>
In-Reply-To: <199709061749.KAA25203@kithrup.com>

next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, 6 Sep 1997, Sean Eric Fagan wrote:

> In article <Pine.NEB.3.96.970906024915.163A-100000.kithrup.freebsd.security@apocalypse.saturn.net> you write:
> >Here is a simple patch, it disallows writes to pid 1's mem node if
> >securelevel is > 0 (diff is based on 2.2.1 box with the securelevel fix
> >applied):
> 
> Insufficient -- PTRACE_ATTACH allows the same hole.

ptrace_attach was fixed in 2.2.2

> 
> Also, the only place that kind of change really needs to go is in
> procfs_open(), when the file is originally opened.  If securelevel > 0, then
> init should be read-only (or not even readable at all).  A more general way
> of doing this should be provided, I think, rather than special-casing pid 1.
> 
> Sean.
> 

I agree, but the ptrace_attach was fixed with this same sorta thing.






Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSI.3.95.970906230726.16448A-100000>