Re: Fwd: Use suid_dumpable=2 for development releases

On 02/12/2016 07:57 PM, Andrew Lutomirski wrote: On Fri, Feb 12, 2016 at 10:32 AM, Richard W.M. Jones wrote: On Fri, Feb 12, 2016 at 07:24:06AM -0500, Jakub Filak wrote: The default value 0 is there for good security reason, but I would like to propose changing the default value to 2 for dev

Re: Fwd: Use suid_dumpable=2 for development releases

On 02/16/2016 03:23 PM, Andrew Lutomirski wrote: On Feb 15, 2016 10:36 PM, "Jakub Filak" > wrote: > > It looks like that there are no opponents of this change but several supporters > and few of them even want to have suid_dumpable=2 in all releases. > > I was thin

Re: Fwd: Use suid_dumpable=2 for development releases

On Feb 15, 2016 10:36 PM, "Jakub Filak" wrote: > > It looks like that there are no opponents of this change but several supporters > and few of them even want to have suid_dumpable=2 in all releases. > > I was thinking about it and Richard W.M. Jones' email about safeness of > suid_dumpable=2 with

Re: Fwd: Use suid_dumpable=2 for development releases

It looks like that there are no opponents of this change but several supporters and few of them even want to have suid_dumpable=2 in all releases. I was thinking about it and Richard W.M. Jones' email about safeness of suid_dumpable=2 without ABRT gave me an idea to teach ABRT to set suid_dumpab

Re: Fwd: Use suid_dumpable=2 for development releases

I'm not a security expert but I would rather start with something less ambitious and more secure. Just for sure. Regards, Jakub On 02/15/2016 11:22 AM, Miroslav Vadkerti wrote: The issue described in the article was fixed by requiring an absolute path in core_pattern (If I understand it corre

Re: Fwd: Use suid_dumpable=2 for development releases

> The issue described in the article was fixed by requiring an absolute > path in core_pattern (If I understand it correctly). > > If core_pattern is unsafe, the process is not dumped at all (man 5 proc). > > The kernel commit adds a warning, because kernel was silently ignoring > crashes and no

Re: Fwd: Use suid_dumpable=2 for development releases

On 02/12/2016 07:57 PM, Andrew Lutomirski wrote: On Fri, Feb 12, 2016 at 10:32 AM, Richard W.M. Jones wrote: On Fri, Feb 12, 2016 at 07:24:06AM -0500, Jakub Filak wrote: The default value 0 is there for good security reason, but I would like to propose changing the default value to 2 for dev

Re: Fwd: Use suid_dumpable=2 for development releases

The issue described in the article was fixed by requiring an absolute path in core_pattern (If I understand it correctly). If core_pattern is unsafe, the process is not dumped at all (man 5 proc). The kernel commit adds a warning, because kernel was silently ignoring crashes and no one could no

Re: Fwd: Use suid_dumpable=2 for development releases

On Fri, Feb 12, 2016 at 10:32 AM, Richard W.M. Jones wrote: > On Fri, Feb 12, 2016 at 07:24:06AM -0500, Jakub Filak wrote: >> The default value 0 is there for good security reason, but I would >> like to propose changing the default value to 2 for development >> Fedora releases (Alpha, Beta, Rawhi

Re: Fwd: Use suid_dumpable=2 for development releases

On Fri, Feb 12, 2016 at 07:24:06AM -0500, Jakub Filak wrote: > The default value 0 is there for good security reason, but I would > like to propose changing the default value to 2 for development > Fedora releases (Alpha, Beta, Rawhide). In this case, kernel would > send core dump to ABRT (or syste

Re: Fwd: Use suid_dumpable=2 for development releases

On Fri, Feb 12, 2016 at 12:40:37PM +, Tom Hughes wrote: > On 12/02/16 12:24, Jakub Filak wrote: > >I believe that maintainers of packages like chrony will be really delighted > >with this change, while will not weaken security of Fedora for regular users. > > What part of chrony is setuid? I d

Re: Fwd: Use suid_dumpable=2 for development releases

On 12/02/16 12:24, Jakub Filak wrote: As a maintainer of ABRT, I have been asked several times why ABRT does not catch crashes of many processes and one kind of reasons dominate among other reasons - processes that executes set-user-ID programs (man 5 core). These processes are not dumped at all