2.2 imminent.. /proc security fix?

Chris Evans (chris@ferret.lmh.ox.ac.uk)
Mon, 12 Oct 1998 11:43:42 +0100 (GMT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Mike A. Harris: "Re: [OT] M$ vs *all that is good and true*"
Previous message: Victor Stanescu: "apm and 2.1.x again"

Hi,

Since 2.2 seems imminent, I thought I'd put on my "security hat". There's
a /proc security fix in 2.0.3x which I'd like to see in 2.2.

The fix stops someone holding open "/proc/<pid>/*" files, letting the
process exit, then waiting for "pid" to be re-used, gaining read access to
semi-sensitive info.

Cheers
Chris

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: Mike A. Harris: "Re: [OT] M$ vs *all that is good and true*"
Previous message: Victor Stanescu: "apm and 2.1.x again"