>Yes, but an application can protect itself from an inadvertent core dump. >It can't (today) against being ktrace'd.
You'd better fix ptrace and procfs then. Of course, that breaks everything that has always been true, but, hey, it's better to be wrong than right, I guess? if you care about security, you made the damned executable suid or sgid. Then ktrace, ptrace, truss, and core dumps do not work. Even if it simply does setuid(getruid()). To Unsubscribe: send mail to [email protected] with "unsubscribe freebsd-hackers" in the body of the message
