Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Sun, 05 Jun 2011 08:10:19 +0800
From: Pavel Labushev <p.labushev@...il.com>
To: kernel-hardening@...ts.openwall.com
Subject: Re: /proc/PID directory hiding

05.06.2011 04:20, Vasiliy Kulikov пишет:

>> Is the above on grsecurity?
> 
> No, grsecurity hides uid/gid from both *stat*(2) and getdents*(2) functions
> (implemented as proc_pid_readdir() and pid_getattr()).

Yes, it's on grsecurity. Just try it and see.

$ uname -r
2.6.39-grsec
$ find /proc -maxdepth 1 -type d -name 1
$ ls -ld /proc/1
dr-xr-x--- 6 root root 0 Jun  4 21:05 /proc/1

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.