Coredump-A: 配置相关:suid_dumpable
文章目录
- 简介
- proc(5)
- 和这个参数相关的代码
- 相关的系统调用:prctl
简介
https://access.redhat.com/solutions/4896
关于coredump的配置还挺多。原因也说因为安全。有些东西就是需要可以配置的。
suid_dumpable:
This value can be used to query and set the core dump mode for setuid or otherwise protected/tainted binaries. 模式:
0 - (默认) - traditional behaviour. Any process which has changed privilege levels or is execute only will not be dumped.
1 - (debug) - all processes dump core when possible. The core dump is owned by the current user and no security is applied. This is intended for system debugging situations only. Ptrace is unchecked. This is insecure as it allows regular users to examine the memory contents of privileged processes.
2 - (suidsafe) - any binary which normally would not be dumped is dumped