[OpenAFS-devel] Re: [PATCH] in-core AFS multiplexor and PAG
support
Nathan Neulinger
nneul@umr.edu
18 May 2003 09:22:29 -0500
> ? If he has same uid as you *and* you
> have >=1 process running, what prevents
> him from gdb attach <that process>,
> and force it to do whatever he needs
> by forcing syscall?
> Pavel
That's a good point, and perhaps it should be an option to not allow
ptrace or other potentially dangerous operations between processes in
different pags. But leave that optional, as it might still be useful -
for example, logging in and diagnosing a daemon running in a separate
pag.
It's not clear if this would be best as a per-pag flag or a global one
though.
-- Nathan
------------------------------------------------------------
Nathan Neulinger EMail: nneul@umr.edu
University of Missouri - Rolla Phone: (573) 341-4841
Computing Services Fax: (573) 341-4216