* [PATCH v2] doc: yama: Swap HTTP for HTTPS and replace dead link
@ 2020-07-09 18:51 Kees Cook
2020-07-13 15:40 ` Jonathan Corbet
0 siblings, 1 reply; 2+ messages in thread
From: Kees Cook @ 2020-07-09 18:51 UTC (permalink / raw)
To: Jonathan Corbet; +Cc: Alexander A. Klimov, linux-doc, linux-kernel
Replace one dead link for the same person's original presentation on the
topic and swap an HTTP URL with HTTPS. While here, linkify the text to
make it more readable when rendered.
Link: https://lore.kernel.org/lkml/20200708073346.13177-1-grandmaster@al2klimov.de/
Co-developed-by: Alexander A. Klimov <grandmaster@al2klimov.de>
Signed-off-by: Alexander A. Klimov <grandmaster@al2klimov.de>
Signed-off-by: Kees Cook <keescook@chromium.org>
---
v2:
- replace storm.net.nz url (kees)
- refactor with descriptive text (kees)
v1: https://lore.kernel.org/lkml/20200708073346.13177-1-grandmaster@al2klimov.de/
---
Documentation/admin-guide/LSM/Yama.rst | 7 ++++---
1 file changed, 4 insertions(+), 3 deletions(-)
diff --git a/Documentation/admin-guide/LSM/Yama.rst b/Documentation/admin-guide/LSM/Yama.rst
index d0a060de3973..d9cd937ebd2d 100644
--- a/Documentation/admin-guide/LSM/Yama.rst
+++ b/Documentation/admin-guide/LSM/Yama.rst
@@ -19,9 +19,10 @@ attach to other running processes (e.g. Firefox, SSH sessions, GPG agent,
etc) to extract additional credentials and continue to expand the scope
of their attack without resorting to user-assisted phishing.
-This is not a theoretical problem. SSH session hijacking
-(http://www.storm.net.nz/projects/7) and arbitrary code injection
-(http://c-skills.blogspot.com/2007/05/injectso.html) attacks already
+This is not a theoretical problem. `SSH session hijacking
+<https://www.blackhat.com/presentations/bh-usa-05/bh-us-05-boileau.pdf>`_
+and `arbitrary code injection
+<https://c-skills.blogspot.com/2007/05/injectso.html>`_ attacks already
exist and remain possible if ptrace is allowed to operate as before.
Since ptrace is not commonly used by non-developers and non-admins, system
builders should be allowed the option to disable this debugging system.
--
2.25.1
--
Kees Cook
^ permalink raw reply related [flat|nested] 2+ messages in thread
* Re: [PATCH v2] doc: yama: Swap HTTP for HTTPS and replace dead link
2020-07-09 18:51 [PATCH v2] doc: yama: Swap HTTP for HTTPS and replace dead link Kees Cook
@ 2020-07-13 15:40 ` Jonathan Corbet
0 siblings, 0 replies; 2+ messages in thread
From: Jonathan Corbet @ 2020-07-13 15:40 UTC (permalink / raw)
To: Kees Cook; +Cc: Alexander A. Klimov, linux-doc, linux-kernel
On Thu, 9 Jul 2020 11:51:35 -0700
Kees Cook <keescook@chromium.org> wrote:
> Replace one dead link for the same person's original presentation on the
> topic and swap an HTTP URL with HTTPS. While here, linkify the text to
> make it more readable when rendered.
>
> Link: https://lore.kernel.org/lkml/20200708073346.13177-1-grandmaster@al2klimov.de/
> Co-developed-by: Alexander A. Klimov <grandmaster@al2klimov.de>
> Signed-off-by: Alexander A. Klimov <grandmaster@al2klimov.de>
> Signed-off-by: Kees Cook <keescook@chromium.org>
> ---
> v2:
> - replace storm.net.nz url (kees)
> - refactor with descriptive text (kees)
> v1: https://lore.kernel.org/lkml/20200708073346.13177-1-grandmaster@al2klimov.de/
> ---
> Documentation/admin-guide/LSM/Yama.rst | 7 ++++---
> 1 file changed, 4 insertions(+), 3 deletions(-)
Applied, thanks.
jon
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2020-07-13 15:40 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2020-07-09 18:51 [PATCH v2] doc: yama: Swap HTTP for HTTPS and replace dead link Kees Cook
2020-07-13 15:40 ` Jonathan Corbet
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).