The initial advisory mentioned disabling the ability to load kernel modules as a work around. However, I'm not sure if LCAP will sufficiently secure a box against the ptrace-bug. I haven't yet found a ptrace exploit to test it out.
Blocking ptrace stops all those I got my hands on from working. I can't say anything about LCAPs abilities though.
Cu, Moritz
_______________________________________________ cobalt-security mailing list [EMAIL PROTECTED] http://list.cobalt.com/mailman/listinfo/cobalt-security
