On Wed, 2013-06-19 at 04:34 +0200, Vincent Lefevre wrote: > Package: src:linux > Version: 3.9.6-1 > Severity: wishlist > > As of 3.9, the Debian kernel includes Yama, which switches on ptrace > protection by default. This is a bad idea, because: [...]
Agreed; this is a poor default. I kind of thought this was opt-in like
the other LSMs, but as it's designed to stack it doesn't depend on the
'security' kernel parameter. I'll change that.
Ben.
--
Ben Hutchings
Lowery's Law:
If it jams, force it. If it breaks, it needed replacing anyway.
signature.asc
Description: This is a digitally signed message part
