From a2e8b9ca5de980419d6eb2fc0fdf9671f0d2b6ab Mon Sep 17 00:00:00 2001 From: Dan Walsh Date: Jan 24 2012 14:30:07 +0000 Subject: Turn on deny_ptrace boolean for the Rawhide run, so we can test this out --- diff --git a/booleans-mls.conf b/booleans-mls.conf index c264bb2..fb86f90 100644 --- a/booleans-mls.conf +++ b/booleans-mls.conf @@ -1,3 +1,6 @@ +# Turn off the ability for one process to read/modify another processes memory +deny_ptrace = true + # Allow making anonymous memory executable, e.g.for runtime-code generation or executable stack. # allow_execmem = false diff --git a/booleans-targeted.conf b/booleans-targeted.conf index 2f5bc2e..071bc80 100644 --- a/booleans-targeted.conf +++ b/booleans-targeted.conf @@ -1,5 +1,7 @@ +# Turn off the ability for one process to read/modify another processes memory +deny_ptrace = true + # Allow making anonymous memory executable, e.g.for runtime-code generation or executable stack. -# deny_execmem = false allow_execmem = true