Subject: Re: sysctl knob to let sugid processes dump core (pr 15994)
To: Elad Efrat <elad@NetBSD.org>
From: Greg Troxel <gdt@ir.bbn.com>
List: tech-security
Date: 01/13/2006 12:34:45
  I like the idea of both default owner and default directory to save the
  coredumps of sugid processes.

That sounds complicated.  How about just make them owned by root and
0400, and put them where they would have gone if not suid?  Anyone who
is debugging suid stuff and wants core dumps can become root to deal
with the core dump.  And, there's less to go wrong security-wise than
managing more defaults.

-- 
        Greg Troxel <gdt@ir.bbn.com>