Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

refuse debugger being attached #1

Open
kazuho opened this issue Sep 23, 2015 · 0 comments
Open

refuse debugger being attached #1

kazuho opened this issue Sep 23, 2015 · 0 comments
Labels
enhancement

Comments

@kazuho
Copy link
Member

kazuho commented Sep 23, 2015

As of adb7442, the Neverbleed daemon refuses debuggers from being attached only in the following cases:

  • always on Linux
  • on OS X, if neverbleed_setuidgid is called

We should:

  • call ptrace(PT_DENY_ATTACH) on OS X to always refuse
  • explore the possibility of doing same onon other OS

Note: this feature is not a must-have; you can use different UIDs for the daemon and the client.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@kazuho