Re: CVS commit: src/sys/miscfs/procfs

To: source-changes-d%NetBSD.org@localhost
Subject: Re: CVS commit: src/sys/miscfs/procfs
From: christos%astron.com@localhost (Christos Zoulas)
Date: Thu, 23 Jun 2011 19:55:49 +0000 (UTC)

In article <20110623190949.GB4737%netbsd.org@localhost>,
David Holland  <dholland-sourcechanges%netbsd.org@localhost> wrote:
>On Thu, Jun 23, 2011 at 01:06:38PM -0400, Christos Zoulas wrote:
> > Modified Files:
> >     src/sys/miscfs/procfs: procfs_vnops.c
> > 
> > Log Message:
> > From Aleksey Cheusov: Don't make it easy for compromised systems to bypass
> > ASLR protections by providing the mapping addresses of programs to everyone.
>
>...as opposed to, say, running /usr/bin/pmap?
>
>(I've long thought that should be restricted to root, or at least only
>to one's own non-setugid processes.)

I am in the process of fixing that too, stay tuned.

christos

Follow-Ups:
- Re: CVS commit: src/sys/miscfs/procfs
  - From: David Holland

References:
- Re: CVS commit: src/sys/miscfs/procfs
  - From: David Holland

Prev by Date: Re: CVS commit: src/sys/miscfs/procfs
Next by Date: Re: CVS commit: src/sys/miscfs/procfs
Previous by Thread: Re: CVS commit: src/sys/miscfs/procfs
Next by Thread: Re: CVS commit: src/sys/miscfs/procfs
Indexes:

Home | Main Index | Thread Index | Old Index