security-misc icon indicating copy to clipboard operation
security-misc copied to clipboard

Published 20 hours ago verified publisher icon Kicksecure

`hide-hardware-info.service`: hide `/proc/dynamic_debug/`

Open wryMitts opened this issue 1 year ago • 1 comments

This is a file I would normally expect to be restricted by kernel.dmesg_restrict = 1 yet I can still read it on my system. Leaks hardware info, kernel module info.

Permissions of this file /proc/dynamic_debug/control are 644.

See also: https://www.kernel.org/doc/html/v4.12/admin-guide/dynamic-debug-howto.html

wryMitts avatar Feb 26 '24 21:02 wryMitts

Might get fixed if the following feature was implemented:

  • https://github.com/Kicksecure/security-misc/issues/205

adrelanos avatar Mar 04 '24 10:03 adrelanos