Vulnerability Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: core dump

From: anorexia () TELKOM NET (AnorEXia)
Date: Mon, 17 Jul 2000 13:48:42 +0400

And furthermore, it is really important for analyzing buffer.o in the
stacks, regarding to security

gdb -c ***.core

On Thu, 13 Jul 2000, Robert G. Ferrell wrote:


i do not know this has been asked before but if so, sorry.
my question is that i am new into the topic of vulnerability development
world and i really wonder why unix like OS dumps core files and what is the
importance
of it.


In brief, a core dump is an image of the kernel memory; a "snapshot" taken at
the time a program crash or panic occurs.  Its purpose is to allow you to see
the state of the operating system when the error took place.  If the error was
one that is relevant to the state of the system, a core dump can be valuable in
diagnosing the nature and cause of the error condition.

At the very least, doing 'file core' will tell you what process caused the dump.

Hope this helps,

RGF

Robert G. Ferrell, CISSP
========================================
 Who goeth without humor goeth unarmed.
========================================
Previous By Date Next
Previous By Thread Next

Current thread: