Control: tags -1 +security -moreinfo Thijs Kinkhorst <th...@debian.org> writes: > gpg-agent uses setrlimit to prevent core dumps. Is there any indication that > this is not sufficient?
Well, I can still attach to an existing gpg-agent using gdb, whereas with ssh-agent this does not work. So if an attacker can take control of any process running in an account, they can also ptrace() any running gpg-agent to extract any key material it might contain. <http://lwn.net/Articles/393010/> describes a more extreme approach to this where gdb wouldn't be allowed to attach to ANY process unless run as root (normal users would have to start the process from gdb itself). (I believe this other approach is actually the default with some of the newer Debian kernel? At least, the reporter said so in <http://bugs.debian.org/712663>.) -- Hi! I'm a .signature virus! Copy me into your ~/.signature to help me spread! -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
