Date: Sun, 10 Aug 1997 10:34:50 -0700 From: Sean Eric Fagan <sef@Kithrup.COM> To: hackers@freebsd.org Subject: Re: Fix for the PROCFS security hole! Message-ID: <199708101734.KAA17222@kithrup.com> In-Reply-To: <Pine.BSF.3.96.970810101530.7449B-100000.kithrup.freebsd.hackers@server.local.sunyit.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
In article <Pine.BSF.3.96.970810101530.7449B-100000.kithrup.freebsd.hackers@server.local.sunyit.edu> you write: >I'm not to sure how to do it, but IF the procfs system could be modified >to somehow act like the /dev/tty* system, where the second a user >logs on the device is then owned by them and all other users access is >revoked. This could work that a setuid proc when exec'd, procfs would >automatically change permissions on it so that it is untainable. The solution I'm working on right now (which I've had in mind for a while) was to have procfs return an error when doing any I/O to a process which has ever changed id's, unless (of course) the calling process is root.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199708101734.KAA17222>