Subject: ktrace and P_SUGID
To: Jun-ichiro itojun Hagino <itojun@netbsd.org>
From: Jason R Thorpe <thorpej@wasabisystems.com>
List: tech-security
Date: 06/27/2002 19:20:25
On Fri, Jun 28, 2002 at 04:59:37AM +0300, Jun-ichiro itojun Hagino wrote:

 > Module Name:	syssrc
 > Committed By:	itojun
 > Date:		Fri Jun 28 01:59:37 UTC 2002
 > 
 > Modified Files:
 > 	syssrc/sys/kern: kern_ktrace.c
 > 
 > Log Message:
 > disallow ktrace on P_SUGID.  from openbsd

What does this actually fix?  As it is, ktrace will stop tracing when
you exec a sugid executable, and ktrace -p to attach to an existing
sugid process already returns "operation not permitted".

-- 
        -- Jason R. Thorpe <thorpej@wasabisystems.com>