[arch-general] [arch-dev-public] Trimming down our default kernel configuration

Thomas Bächler thomas at archlinux.org
Wed Mar 26 16:00:15 EDT 2014

Am 26.03.2014 20:18, schrieb Leonid Isaev:
> However, I don't think that Yama requires any userspace components, does it?
> Currently, I boot with "security=yama" and completely disabled non-admin
> ptrace (kernel.yama.ptrace_scope=2). Perhaps -ARCH kernels should keep Yama
> available albeit disabled by default (as they now do).

Once yama is built-in, the ptrace_scope protection is enabled by
default. There is no option to change that.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 901 bytes
Desc: OpenPGP digital signature
URL: <http://mailman.archlinux.org/pipermail/arch-general/attachments/20140326/8c3cd13d/attachment-0001.asc>

More information about the arch-general mailing list