|
Message-ID: <20110907112301.GA12157@albatros> Date: Wed, 7 Sep 2011 15:23:01 +0400 From: Vasiliy Kulikov <segoon@...nwall.com> To: Tejun Heo <tj@...nel.org> Cc: Cyrill Gorcunov <gorcunov@...il.com>, Andrew Morton <akpm@...ux-foundation.org>, "Kirill A. Shutemov" <kirill@...temov.name>, containers@...ts.osdl.org, linux-kernel@...r.kernel.org, linux-fsdevel@...r.kernel.org, Nathan Lynch <ntl@...ox.com>, kernel-hardening@...ts.openwall.com, Oren Laadan <orenl@...columbia.edu>, Daniel Lezcano <dlezcano@...ibm.com>, Glauber Costa <glommer@...allels.com>, James Bottomley <jbottomley@...allels.com>, Alexey Dobriyan <adobriyan@...il.com>, Al Viro <viro@...IV.linux.org.uk>, Pavel Emelyanov <xemul@...allels.com> Subject: Re: [patch 2/2] fs, proc: Introduce the /proc/<pid>/map_files/ directory v6 Hi, On Wed, Sep 07, 2011 at 02:33 +0900, Tejun Heo wrote: > On Tue, Sep 06, 2011 at 09:29:52PM +0400, Vasiliy Kulikov wrote: > > I agree with you. I don't think that showing system-global debug > > information to all users by default is the right thing. But some people > > doesn't agree with this point of view: > > > > http://thread.gmane.org/gmane.linux.kernel/1108378 > > Yeap, I know there are two sides of the discussion but if one takes > the position that hiding such global debug info is more harmful, it's > only crazier to hide such information from each individual users of > the said global facility. So, let's just forget about information > leak via freeing or not freeing here. It's the wrong battle field. Andrew, are you OK with closing the hole with pid_no_revalidate() and 0600 /proc/slabinfo? If so, I feel I have to start this discussion with people participating in the discussion above: Theodore, Dan, Linus, etc. Thanks, -- Vasiliy Kulikov http://www.openwall.com - bringing security into open computing environments
Powered by blists - more mailing lists
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.