[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: RE : [cobalt-security] ptrace local root exploit

Subject: Re: RE : [cobalt-security] ptrace local root exploit
From: Michael Stauber <cobalt@xxxxxxxxxxxxxx>
Date: Tue, 25 Mar 2003 18:51:08 +0100
Organization: SOLARSPEED.NET
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

Hi Gerald,

>   not sure, but won't lcap prevent the ptrace-bug from working?

The initial advisory mentioned disabling the ability to load kernel modules as 
a work around. However, I'm not sure if LCAP will sufficiently secure a box 
against the ptrace-bug. I haven't yet found a ptrace exploit to test it out. 

-- 

With best regards,

Michael Stauber

Follow-Ups:
- Re: RE : [cobalt-security] ptrace local root exploit
  - From: Moritz Julian Ehlenz

References:
- Re: RE : [cobalt-security] ptrace local root exploit
  - From: Gerald Waugh

Prev by Date: Re: RE : [cobalt-security] ptrace local root exploit
Next by Date: Re: RE : [cobalt-security] ptrace local root exploit
Previous by thread: Re: RE : [cobalt-security] ptrace local root exploit
Next by thread: Re: RE : [cobalt-security] ptrace local root exploit

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index