Commit 389da25f authored 13 years ago by Kees Cook Committed by James Morris 13 years ago

Yama: add additional ptrace scopes


This expands the available Yama ptrace restrictions to include two more
modes. Mode 2 requires CAP_SYS_PTRACE for PTRACE_ATTACH, and mode 3
completely disables PTRACE_ATTACH (and locks the sysctl).

Signed-off-by: Kees Cook <keescook@chromium.org>
Signed-off-by: James Morris <james.l.morris@oracle.com>

parent 8156b451

No related branches found

No related tags found

Hide whitespace changes

Inline Side-by-side

Showing with 60 additions and 12 deletions

Please register or to comment

Admin message

Yama: add additional ptrace scopes