Emergency security band-aids with Systemtap

Here's anarticle on the Red Hat security blog on the use of Systemtap to applyemergency security fixes. "With the vulnerability-band-aid approachchosen, we need to express our intent in the systemtap scriptinglanguage. The model is simple: for each place where the state change is tobe done we place a probe. In each probe handler, we detect whether thecontext indicates an exploit is in progress and, if so, make changes to thecontext. We might also need additional probes to detect and capture statefrom before the vulnerable section of code, for diagnosticpurposes."