Date: Sun, 29 May 2011 02:07:58 +0800 From: Pavel Labushev <p.labushev@...il.com> To: owl-dev@...ts.openwall.com Subject: Re: segoon's status report - #1 of 15 24.05.2011 23:12, Vasiliy Kulikov пишет: > I've implemented restricted perms, but didn't do actual hiding > directories. In grsecurity it is implemented by hiding directories from > processes that cannot access them. > > I think it may be defective by design because there are many other ways It is: $ python -c 'import os; print os.stat("/proc/1")' posix.stat_result(st_mode=16744, st_ino=535821L, st_dev=3L, st_nlink=6, st_uid=0, st_gid=0, st_size=0L, st_atime=1306605485, st_mtime=1306605485, st_ctime=1306605485) It's a known flaw and AFAIR it was considered irrelevant.
Powered by blists - more mailing lists
Powered by Openwall GNU/*/Linux - Powered by OpenVZ