diff options
author | Michael Kerrisk <mtk.manpages@gmail.com> | 2013-01-11 00:24:36 +0100 |
---|---|---|
committer | Michael Kerrisk <mtk.manpages@gmail.com> | 2013-01-11 00:31:53 +0100 |
commit | 2c7d476b6cb98fd53459df38bc0dedf9c9bc5854 (patch) | |
tree | 1d31b92fe03d8017c35640a20db55c7945ea21a5 | |
parent | 491b2e75a3533b9bb65636ea80cd82bbc60227d8 (diff) | |
download | man-pages-2c7d476b6cb98fd53459df38bc0dedf9c9bc5854.tar.gz |
prctl.2: Minor wording fixes to Kees Cook's patch
Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com>
-rw-r--r-- | man2/prctl.2 | 18 |
1 files changed, 13 insertions, 5 deletions
diff --git a/man2/prctl.2 b/man2/prctl.2 index 506c7b3a03..9934695f71 100644 --- a/man2/prctl.2 +++ b/man2/prctl.2 @@ -275,13 +275,21 @@ in the location pointed to by This is only meaningful when the Yama LSM is enabled and in mode 1 ("restricted ptrace", visible via .IR /proc/sys/kernel/yama/ptrace_scope ). -When a "ptracer process id" is passed in \fIarg2\fP, the caller is declaring -that the ptracer process can ptrace the current process as if it were a -direct process ancestor. When set to 0, this relationship is removed. When -set to +When a "ptracer process ID" is passed in \fIarg2\fP, +the caller is declaring that the ptracer process can +.BR ptrace (2) +the calling process as if it were a direct process ancestor. +Employing +.B PR_SET_PTRACER +with +.I arg2 +set to 0 clears the caller's "ptracer process ID". +If +.I arg2 +is .BR PR_SET_PTRACER_ANY, the ptrace restrictions introduced by Yama are effectively disabled for the -current process. +calling process. For further information, see the kernel source file .IR Documentation/security/Yama.txt . |