Alex,
Alex Vong 写道:
I think we should set /proc/sys/kernel/dmesg_restrict to 1 by
default to
prevent unprivileged users from reading the kernel ring buffer
(since it
could expose sensitive information about the system).
Debian does this. I don't know about other distros.
I do this on all my
Hello,
Ricardo Wurmus writes:
> Ludovic Courtès writes:
>
>> Hi,
>>
>> Alex Vong skribis:
>>
>>> I think we should set /proc/sys/kernel/dmesg_restrict to 1 by default to
>>> prevent unprivileged users from reading the kernel ring buffer (since it
>>> could expose sensitive information about the
Ludovic Courtès writes:
> Hi,
>
> Alex Vong skribis:
>
>> I think we should set /proc/sys/kernel/dmesg_restrict to 1 by default to
>> prevent unprivileged users from reading the kernel ring buffer (since it
>> could expose sensitive information about the system).
>
> We could have a ‘dmesg-res
Hi,
Alex Vong skribis:
> I think we should set /proc/sys/kernel/dmesg_restrict to 1 by default to
> prevent unprivileged users from reading the kernel ring buffer (since it
> could expose sensitive information about the system).
We could have a ‘dmesg-restrict’ service that would write to that
And we could make it an operating system option then?
--
Pierre Neidhardt
https://ambrevar.xyz/
signature.asc
Description: PGP signature
Hello Guix,
I think we should set /proc/sys/kernel/dmesg_restrict to 1 by default to
prevent unprivileged users from reading the kernel ring buffer (since it
could expose sensitive information about the system).
Debian does this. I don't know about other distros.
Cheers,
Alex
signature.asc
Des
