FreeBSD Security Advisory FreeBSD-SA-03:09.signal
Bruce M Simpson
bms at spc.org
Sun Aug 10 23:47:24 PDT 2003
On Sun, Aug 10, 2003 at 08:33:16PM -1000, Jason Dambrosio wrote:
> Wouldn't a possible workaround be, to load a kld module that would
> replace the ptrace(2) system call with a patched one? I remember doing
> such a trick for modifying other system calls using kld modules...
That isn't really a solution; more of a band-aid.
Besides, if someone compromises the system in some other way, they can
just remove your module or unload it. Unless you're a big securelevels fan.
BMS
More information about the freebsd-security
mailing list