doc: yama: Swap HTTP for HTTPS and replace dead link

Linux kernel mirror (for testing) git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git

kernel os linux

Replace one dead link for the same person's original presentation on the
topic and swap an HTTP URL with HTTPS. While here, linkify the text to
make it more readable when rendered.

Link: https://lore.kernel.org/lkml/20200708073346.13177-1-grandmaster@al2klimov.de/
Co-developed-by: Alexander A. Klimov <grandmaster@al2klimov.de>
Signed-off-by: Alexander A. Klimov <grandmaster@al2klimov.de>
Signed-off-by: Kees Cook <keescook@chromium.org>
Link: https://lore.kernel.org/r/202007091141.C008B89EC@keescook
Signed-off-by: Jonathan Corbet <corbet@lwn.net>

authored by

Kees Cook and committed by

Jonathan Corbet 5 years ago 9d1bd9e8 dbf35499

+4 -3

1 changed file

expand all

Documentation

admin-guide

LSM

Yama.rst

+4 -3

Documentation/admin-guide/LSM/Yama.rst

··· 19 19 etc) to extract additional credentials and continue to expand the scope 20 20 of their attack without resorting to user-assisted phishing. 21 21 22 - This is not a theoretical problem. SSH session hijacking 23 - (http://www.storm.net.nz/projects/7) and arbitrary code injection 24 - (http://c-skills.blogspot.com/2007/05/injectso.html) attacks already 22 + This is not a theoretical problem. `SSH session hijacking 23 + <https://www.blackhat.com/presentations/bh-usa-05/bh-us-05-boileau.pdf>`_ 24 + and `arbitrary code injection 25 + <https://c-skills.blogspot.com/2007/05/injectso.html>`_ attacks already 25 26 exist and remain possible if ptrace is allowed to operate as before. 26 27 Since ptrace is not commonly used by non-developers and non-admins, system 27 28 builders should be allowed the option to disable this debugging system.