SELinuxDenyPtrace and security by default

"What Dan misses is that his employer has sold a number of large deployments to corporate customers, where the software developers don't have root on the systems they use."

I do hope this employer then has proper IT group that during testing finds out the ptrace() should be allowed for the programmers. Otherwise I think that company will be doomed because in general they won't be able to properly support their programmers.

greets,
Staf.