[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: RE : [cobalt-security] ptrace local root exploit
- Subject: Re: RE : [cobalt-security] ptrace local root exploit
- From: Michael Stauber <cobalt@xxxxxxxxxxxxxx>
- Date: Tue, 25 Mar 2003 18:51:08 +0100
- Organization: SOLARSPEED.NET
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
Hi Gerald,
> not sure, but won't lcap prevent the ptrace-bug from working?
The initial advisory mentioned disabling the ability to load kernel modules as
a work around. However, I'm not sure if LCAP will sufficiently secure a box
against the ptrace-bug. I haven't yet found a ptrace exploit to test it out.
--
With best regards,
Michael Stauber