Skip to content
GitLab
Explore
Sign in
Register
HardenedBSD
HardenedBSD
Wiki
Home
Home
· Changes
Page history
Document more ptrace restrictions
authored
Jun 21, 2023
by
Shawn Webb
Signed-off-by:
Shawn Webb
<
shawn.webb@hardenedbsd.org
>
Hide whitespace changes
Inline
Side-by-side
Home.md
View page @
596cf2ab
...
...
@@ -134,6 +134,8 @@ Process tracing (`ptrace`) is hardened:
(
`security.bsd.unprivileged_proc_debug=0`
).
*
Remote syscall functionality (
`ptrace(PT_SC_REMOTE)`
) is prohibited by
default.
*
Capability mode-enabled processes are prohibited targets by default
(
`hardening.prohibit_ptrace_capsicum=2`
).
`uuidgen(1)`
defaults to generating UUIDv4 identifiers.
...
...