本文探讨了Linux系统中SUID程序产生core dump文件的不同模式。默认情况下,改变了凭证的进程不会产生core dump,但可通过调整fs.suid_dumpable参数启用三种模式:传统模式、调试模式及安全模式。
被 suid 的程序要产生 coredump 文件,还需要额外的设置。
[url]http://www.linuxinsight.com/proc_sys_fs_suid_dumpable.html[/url]
[quote]
suid_dumpable
Submitted by admin on Thu, 2006-06-01 01:45
The value in this file determines whether core dump files are produced for set-user-ID or otherwise protected/tainted binaries. Three different integer values can be specified:
* 0 (default) - This provides the traditional behaviour. A core dump will not be produced for a process which has changed credentials (by calling seteuid(2), setgid(2), or similar, or by executing a set-user-ID or set-group-ID program) or whose binary does not have read permission enabled.
* 1 ("debug") - All processes dump core when possible. The core dump is owned by the file system user ID of the dumping process and no security is applied. This is intended for system debugging situations only. Ptrace is unchecked.
* 2 ("suidsafe") - Any binary which normally would not be dumped (see "0" above) is dumped readable by root only. This allows the user to remove the core dump file but not to read it. For security reasons core dumps in this mode will not overwrite one another or other files. This mode is appropriate when administrators are attempting to debug problems in a normal environment.
[/quote]
[url]http://www.linuxinsight.com/proc_sys_fs_suid_dumpable.html[/url]
[quote]
suid_dumpable
Submitted by admin on Thu, 2006-06-01 01:45
The value in this file determines whether core dump files are produced for set-user-ID or otherwise protected/tainted binaries. Three different integer values can be specified:
* 0 (default) - This provides the traditional behaviour. A core dump will not be produced for a process which has changed credentials (by calling seteuid(2), setgid(2), or similar, or by executing a set-user-ID or set-group-ID program) or whose binary does not have read permission enabled.
* 1 ("debug") - All processes dump core when possible. The core dump is owned by the file system user ID of the dumping process and no security is applied. This is intended for system debugging situations only. Ptrace is unchecked.
* 2 ("suidsafe") - Any binary which normally would not be dumped (see "0" above) is dumped readable by root only. This allows the user to remove the core dump file but not to read it. For security reasons core dumps in this mode will not overwrite one another or other files. This mode is appropriate when administrators are attempting to debug problems in a normal environment.
[/quote]
扫一扫
109
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
