Bugtraq mailing list archives
Re: Linux Kernel 2.6.x PRCTL Core Dump Handling -- Simple workaround
From: Michal Zalewski <lcamtuf () dione ids pl>
Date: Sun, 16 Jul 2006 12:11:27 +0200 (CEST)
On Fri, 14 Jul 2006, Lukasz Trabinski wrote:
* hard core 0 and set pam_limits in pam services.
Yes, but this is actually in many cases bypassable through services that do not use PAM, or do not consider a particular operation to constitute a "session". This may include Sendmail and other MTAs capable of delivering to user-specified programs; Apache running scripts; and possibly SSH executing non-tty commands or authorized_keys directives (though I haven't checked the last one in a while). /mz
Current thread:
- rPSA-2006-0122-2 kernel Justin M. Forbes (Jul 13)
- Linux Kernel 2.6.x PRCTL Core Dump Handling -- Simple workaround Caveo Internet BV - Security (Jul 14)
- Re: Linux Kernel 2.6.x PRCTL Core Dump Handling -- Simple workaround Hugo van der Kooij (Jul 14)
- Re: Linux Kernel 2.6.x PRCTL Core Dump Handling -- Simple workaround Michael Shigorin (Jul 15)
- Re: Linux Kernel 2.6.x PRCTL Core Dump Handling -- Simple workaround Lukasz Trabinski (Jul 15)
- Re: Linux Kernel 2.6.x PRCTL Core Dump Handling -- Simple workaround Michal Zalewski (Jul 18)
- Linux Kernel 2.6.x PRCTL Core Dump Handling -- Simple workaround Caveo Internet BV - Security (Jul 14)