[PATCH v5 5/7] proc: instantiate only pids that we can ptrace on 'limit_pids=1' mount option
Alexey Gladkov
gladkov.alexey at gmail.com
Mon May 14 08:34:39 UTC 2018
On Fri, May 11, 2018 at 09:09:04AM -0700, Randy Dunlap wrote:
> On 05/11/2018 02:36 AM, Alexey Gladkov wrote:
> > From: Djalal Harouni <tixxdz at gmail.com>
> >
> > If "limit_pids=1" mount option is set then do not instantiate pids that
> > we can not ptrace. "limit_pids=1" means that procfs should only contain
> > pids that the caller can ptrace.
>
> Where can I find documentation on these mount options (pidonly, limit_pids)?
The documentation is not ready yet. It will be added in the next version
of the patchset.
--
Rgrds, legion
--
To unsubscribe from this list: send the line "unsubscribe linux-security-module" in
the body of a message to majordomo at vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
More information about the Linux-security-module-archive
mailing list