Ubuntu 20.10 Looking At Restricting Access To Kernel Logs With dmesg

Written by Michael Larabel in Ubuntu on 17 June 2020 at 06:22 AM EDT. 32 Comments
UBUNTU
Ubuntu 20.10 will likely join other Linux distributions in restricting access to dmesg by unprivileged users.

Due to dmesg able to leak kernel addresses and other sensitive information, the plan is to not allow dmesg access for unprivileged users. We previously covered the situation more at length within In 2019, Most Linux Distributions Still Aren't Restricting Dmesg Access.

Over the past year or so, Clear Linux and other distributions have begun restricting this dmesg access via the CONFIG_SECURITY_DMESG_RESTRICT Kconfig switch for the kernel builds -- the same approach being pursued now by Canonical with Ubuntu 20.10.


Canonical's Matthew Ruffell calls this "the final security gap currently enjoyed by unprivileged users on multi-user systems" with Ubuntu already restricting access to kernel.log, syslog, and similar information logs yet dmesg on existing Ubuntu releases continues to be fully accessible.

More details on the dmesg restriction plans for Ubuntu 20.10 via Ubuntu-devel.
32 Comments
Related News
Ubuntu 24.04 Supports Easy Installation Of OpenZFS Root File-System With Encryption
Ubuntu 24.04 Beta Now Available For Testing
Ubuntu Maker Canonical Announces New Collaboration With Qualcomm
Canonical Announces Ubuntu Pro For Devices
Netplan 1.0 Is Ready To Go For Ubuntu 24.04 LTS
Ubuntu 24.04 Beta Delayed Due To XZ Nightmare
About The Author
Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week
Linus Torvalds Injects Tabs To Thwart Kconfig Parsers Not Correctly Handling Them
Linux 6.10 To Merge NTSYNC Driver For Emulating Windows NT Synchronization Primitives
Ubuntu Maker Canonical Announces New Collaboration With Qualcomm
Fedora 41 Looks To "-O3" Optimizations For Its Python Build
APT 2.9 Released: Debian's APT 3.0 To Have A New UI With Colors, Columnar Display & More
KDE's KWin Merges Wayland Explicit Sync Support
Former Nouveau Lead Developer Joins NVIDIA, Continues Working On Open-Source Driver
Gentoo Linux Now An SPI Project