SELinuxDenyPtrace: Write, compile, run, but don't debug applications?
Simo Sorce
simo at redhat.com
Tue Apr 10 12:05:12 UTC 2012
On Tue, 2012-04-10 at 04:04 +0200, Kevin Kofler wrote:
> Matej Cepl wrote:
> > OK, this is bad ... is it just because somebody ignored DrKonqi (which
> > would be very bad indeed) or are abrt and breakpad also affected?
>
> If Breakpad attaches GDB to live processes as DrKonqi does, it's also
> affected. As Rex said, ABRT is not affected because it attaches to core
> files instead. But DrKonqi (or any other debugger triggered by the crashing
> executable itself) cannot be easily changed to work on core files instead.
> ABRT works completely differently, by registering as the core file handler
> at kernel level instead.
Abrt looks clearly a better solution.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
More information about the devel
mailing list