El lun, 18-04-2005 a las 15:27 -0400, Rik van Riel escribió: > The same "this forces people to run system monitoring tasks > as root, potentially opening themselves up to security holes" > comment applies to this patch. That's because the patch is split up, those bits are on the proc_misc one. I agree, btw. ;) Adding a "trusted user group"-like configuration option could be useful, as it's done within grsecurity, among that the whole thing might be good to depend on a config. option, but that implies using weird ifdef's and the other folks. Cheers, -- Lorenzo Hernández García-Hierro <[email protected]> [1024D/6F2B2DEC] & [2048g/9AE91A22][http://tuxedo-es.org]
Attachment:
signature.asc
Description: This is a digitally signed message part
- Follow-Ups:
- Re: [PATCH 0/7] procfs privacy
- From: Rik van Riel <[email protected]>
- Re: [PATCH 0/7] procfs privacy
- References:
- [PATCH 0/7] procfs privacy
- From: Lorenzo Hernández García-Hierro <[email protected]>
- Re: [PATCH 0/7] procfs privacy
- From: Rik van Riel <[email protected]>
- [PATCH 0/7] procfs privacy
- Prev by Date: Re: [PATCH 3/7] procfs privacy: misc. entries
- Next by Date: Re: [PATCH] TCP ipv4 source port randomization
- Previous by thread: Re: [PATCH 0/7] procfs privacy
- Next by thread: Re: [PATCH 0/7] procfs privacy
- Index(es):
 |