[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
Re: CVS commit: src/sys/miscfs/procfs
In article <20110623190949.GB4737%netbsd.org@localhost>,
David Holland <dholland-sourcechanges%netbsd.org@localhost> wrote:
>On Thu, Jun 23, 2011 at 01:06:38PM -0400, Christos Zoulas wrote:
> > Modified Files:
> > src/sys/miscfs/procfs: procfs_vnops.c
> > Log Message:
> > From Aleksey Cheusov: Don't make it easy for compromised systems to bypass
> > ASLR protections by providing the mapping addresses of programs to everyone.
>...as opposed to, say, running /usr/bin/pmap?
>(I've long thought that should be restricted to root, or at least only
>to one's own non-setugid processes.)
I am in the process of fixing that too, stay tuned.
Main Index |
Thread Index |