| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 13 Aug 2007 08:47:10 -0700 From: Arjan van de Ven <arjan@...radead.org> To: Neil Horman <nhorman@...driver.com> Cc: linux-kernel@...r.kernel.org, akpm@...ux-foundation.org, torvalds@...ux-foundation.org Subject: Re: [PATCH]: proc: export a processes resource limits via proc/<pid> On Mon, 2007-08-13 at 10:00 -0400, Neil Horman wrote: > Hey there- > Currently, there exists no method for a process to query the resource > limits of another process. They can be inferred via some mechanisms but they > cannot be explicitly determined. Given that this information can be usefull to > know during the debugging of an application, I've written this patch which > exports all of a processes limits via /proc/<pid>/limits. Tested successfully > by myself on x86 on top of 2.6.23-rc2-mm1. since this information, by it's nature, is security sensitive, I would really really strongly suggest that you make this restricted to those processes that can ptrace the victim only... (which is basically "same user or root") Making this world readable is very much a bad thing to do - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists