Bug#712663: gdb with pid argument doesn't work

2013-06-19 Thread Vincent Lefevre
On 2013-06-18 19:56:07 -0400, Samuel Bronson wrote: > No: I simply want you to complain about this to someone who can turn > that option off again. OK, FYI, this will be reverted: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=712740 (the change is pending). So, there's nothing to do on the

Bug#712663: gdb with pid argument doesn't work

2013-06-18 Thread Vincent Lefevre
On 2013-06-18 19:56:07 -0400, Samuel Bronson wrote: > On Tue, Jun 18, 2013 at 6:59 PM, Vincent Lefevre wrote: > > Well, it's normally not possible to run GDB unless the attacker has a > > shell access. And if the attacker has a shell access, he can already > > do more or less anything he wants bec

Bug#712663: gdb with pid argument doesn't work

2013-06-18 Thread Samuel Bronson
On Tue, Jun 18, 2013 at 6:59 PM, Vincent Lefevre wrote: > On 2013-06-18 14:22:16 -0400, Samuel Bronson wrote: > > Allowing GDB to attach to running processes in this manner would almost > > completely undermine the ptrace protection, though: baddies could then > > just > > make gdb do their dirty

Bug#712663: gdb with pid argument doesn't work

2013-06-18 Thread Vincent Lefevre
On 2013-06-18 14:22:16 -0400, Samuel Bronson wrote: > On Tue, Jun 18, 2013 at 8:51 AM, Vincent Lefevre wrote: > > > On 2013-06-18 14:25:59 +0200, Vincent Lefevre wrote: > > > I don't know about ptrace, but I'm using a standard Debian kernel > > > (linux-image-3.9-1-amd64 Debian package). > > > >

Bug#712663: gdb with pid argument doesn't work

2013-06-18 Thread Vincent Lefevre
Control: clone -1 -2 Control: retitle -1 gdb with pid argument doesn't work (ptrace: Operation not permitted) Control: retitle -2 gdb: confusing error message "$HOME/pid: No such file or directory" Control: severity -2 wishlist On 2013-06-18 14:25:59 +0200, Vincent Lefevre wrote: > I wonder what

Bug#712663: gdb with pid argument doesn't work

2013-06-18 Thread Vincent Lefevre
On 2013-06-18 14:25:59 +0200, Vincent Lefevre wrote: > I don't know about ptrace, but I'm using a standard Debian kernel > (linux-image-3.9-1-amd64 Debian package). For the ptrace problem, it could be related to that: https://wiki.ubuntu.com/SecurityTeam/Roadmap/KernelHardening#ptrace%20Protectio

Bug#712663: gdb with pid argument doesn't work

2013-06-18 Thread Vincent Lefevre
Package: gdb Version: 7.6-3 Severity: normal According to the gdb(1) man page: You can, instead, specify a process ID as a second argument, if you want to debug a running process: gdb program 1234 would attach GDB to process 1234 (unless you also have a file named `1234'; GDB does che