Hacker News new | past | comments | ask | show | jobs | submit login

Either, as root:

# echo 0 > /proc/sys/kernel/yama/ptrace_scope

or permanently by editing the file /etc/sysctl.d/10-ptrace.conf




What are the costs and / or downsides to enabling prace_scope?


https://askubuntu.com/a/153970

> What are the risks in setting ptrace_scope to 0?

> - This restores the old behavior where one process can "trace" another process, even if there is no parent-child relationship.

> - In theory, a piece of malware can use this to harm you/your computer; e.g. it can attach to Firefox and log all of your URLs/passwords, etc. In practice this is extremely unlikely unless you blindly install binary debs from random sites, etc.

> - As far as debugging goes, the 0 settings is in fact required for gdb, strace, etc. to attach to non-children unless you run them with elevated privileges (sudo).




Consider applying for YC's W25 batch! Applications are open till Nov 12.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: