freebsd-dev

History

Pawel Jakub Dawidek 5ebb15b942 Add missing privilege check when setting the dump device. Before that change it was possible for a regular user to setup the dump device if he had write access to the given device. In theory it is a security issue as user might get access to kernel's memory after provoking kernel crash, but in practise it is not recommended to give regular users direct access to storage devices. Rework the code so that we do privileges check within the set_dumper() function to avoid similar problems in the future. Discussed with: secteam	2014-11-11 04:48:09 +00:00
..
null.c	Add missing privilege check when setting the dump device. Before that change it	2014-11-11 04:48:09 +00:00

Pawel Jakub Dawidek 5ebb15b942 Add missing privilege check when setting the dump device. Before that change it

was possible for a regular user to setup the dump device if he had write access
to the given device. In theory it is a security issue as user might get access
to kernel's memory after provoking kernel crash, but in practise it is not
recommended to give regular users direct access to storage devices.

Rework the code so that we do privileges check within the set_dumper() function
to avoid similar problems in the future.

Discussed with:	secteam

2014-11-11 04:48:09 +00:00

null.c

Add missing privilege check when setting the dump device. Before that change it

2014-11-11 04:48:09 +00:00