/proc/kcore not openable
Bug #55804 reported by
Matthias Kretz
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux-source-2.6.15 (Ubuntu) |
Invalid
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: linux-image-
/proc/kcore is available, but opening it as root always returns -EPERM.
It really should be readable as root - and it is in vanilla kernels and also in the kernels on previous ubuntu releases. If you found a security reason to to allow reading of /proc/kcore as root you could just as well remove the (pseudo) file. I don't see the added security - only that I lost data which I could have recovered if only I could have read /proc/kcore.
To post a comment you must log in.
Yep, the specific reason was that in general, this does not need to be available, and only exposes memory that could contain very sensitive data.
Only certain portions of /proc/kcore are readable, and that is just to allow things like Xorg to work.