Subject: Re: coredump following symlinks
To: John Kohl <jtk@kolvir.arlington.ma.us>
From: Manuel Bouyer <bouyer@antioche.lip6.fr>
List: tech-kern
Date: 08/27/1999 15:23:21
On Fri, Aug 27, 1999 at 03:17:38PM +0200, Manuel Bouyer wrote:
> It's really hard, I fear we will always be able to get a root program
> dumping core for some time ...
> For security I'd really like to be able to disable core dumps on symlinks.
> Would a sysctl be an option ?

I got another idea: disable core dump if the owner of the existing file
(symlink or something else) is not the same as the one of the process. Is this
OK ?

--
Manuel Bouyer, LIP6, Universite Paris VI.           Manuel.Bouyer@lip6.fr
--