On Wednesday 19 March 2003 09:18, Martynas Domarkas wrote: > Grsecurity patch can limit ordinary user use ptrace. Can it help avoid > ptrace exploit? > > > Martynas
yes for the most part limiting access to /proc/self/exe breaks the exploit. http://www.hardrock.org/kernel/2.4.20/linux-2.4.20-ptrace.patch The patch seems to remove all access to ptrace calls even for root though, I don't see how this _fixes_ anything other than breaking the exploit. didn't look into that much so correct me if I'm wrong. -- ------------------------------ Orlando Padilla http://www.g0thead.com/xbud.asc ------------------------------
