[tor-talk] using ptrace to defend tor

Stefan Kuttler esoteric_rabin at protonmail.com
Fri Mar 20 13:52:45 UTC 2020

Hello List,

I thought about defending tor with ptrace().
For people, that cannot use yama sysctl, write
a knob tor_announce_ptrace_check()

Then, before tor_init() check with standard code
from silvio caesare example.

Later renew check in periodic_events or in event_loop.
The check must always fail, when uid less then 101.

This way, a user without root, can be informed, whether
the machine traces him.


More information about the tor-talk mailing list