Coredump-A: 配置相关:suid_dumpable
文章目录
- 简介
- proc(5)
- 和这个参数相关的代码
- 相关的系统调用:prctl
简介
https://access.redhat.com/solutions/4896
关于coredump的配置还挺多。原因也说因为安全。有些东西就是需要可以配置的。
suid_dumpable:
This value can be used to query and set the core dump mode for setuid or otherwise protected/tainted binaries. 模式:
0 - (默认) - traditional behaviour. Any process which has changed privilege levels or is execute only will not be dumped.
1 - (debug) - all processes dump core when possible. The core dump is owned by the current user and no security is applied. This is intended for system debugging situations only. Ptrace is unchecked. This is insecure as it allows regular users to examine the memory contents of privileged processes.
2 - (suidsafe) - any binary which normally would not be dumped is dumped
原文地址:https://blog.csdn.net/qq_36428903/article/details/133946480
本文来自互联网用户投稿,该文观点仅代表作者本人,不代表本站立场。本站仅提供信息存储空间服务,不拥有所有权,不承担相关法律责任。如若转载,请注明出处:http://www.mrgr.cn/news/61335.html 如若内容造成侵权/违法违规/事实不符,请联系邮箱:809451989@qq.com进行投诉反馈,一经查实,立即删除!
本文来自互联网用户投稿,该文观点仅代表作者本人,不代表本站立场。本站仅提供信息存储空间服务,不拥有所有权,不承担相关法律责任。如若转载,请注明出处:http://www.mrgr.cn/news/61335.html 如若内容造成侵权/违法违规/事实不符,请联系邮箱:809451989@qq.com进行投诉反馈,一经查实,立即删除!