proc filesystem
Kris Kennaway
kris at obsecurity.org
Tue Nov 30 18:59:53 PST 2004
On Wed, Dec 01, 2004 at 10:35:45AM +0900, Rob wrote:
> Ruben de Groot wrote:
> >
> >/proc is considered (and has demonstrated to be) a security
> >risk and has therefore been disabled by default in FreeBSD 5.x
>
> What security risks?
> Same with linproc (mounted as /compat/linux/proc)?
See any number of security advisories. It's not that there are known
vulnerabilities remaining, it's that the very nature of what a procfs
is means that there are likely to be other vulnerabilities waiting to
be discovered.
Kris
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20041130/62e4a4f3/attachment.bin
More information about the freebsd-questions
mailing list