From owner-freebsd-questions@FreeBSD.ORG Thu Feb 1 20:47:23 2007 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 77B4516A40A for ; Thu, 1 Feb 2007 20:47:23 +0000 (UTC) (envelope-from kris@obsecurity.org) Received: from elvis.mu.org (elvis.mu.org [192.203.228.196]) by mx1.freebsd.org (Postfix) with ESMTP id 68D4913C4B6 for ; Thu, 1 Feb 2007 20:47:23 +0000 (UTC) (envelope-from kris@obsecurity.org) Received: from obsecurity.dyndns.org (elvis.mu.org [192.203.228.196]) by elvis.mu.org (Postfix) with ESMTP id 5002E1A4D87; Thu, 1 Feb 2007 12:47:23 -0800 (PST) Received: by obsecurity.dyndns.org (Postfix, from userid 1000) id C263351341; Thu, 1 Feb 2007 15:47:11 -0500 (EST) Date: Thu, 1 Feb 2007 15:47:11 -0500 From: Kris Kennaway To: Martin McCormick Message-ID: <20070201204711.GA74432@xor.obsecurity.org> References: <200702012026.l11KQ0Ia013574@dc.cis.okstate.edu> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="M9NhX3UHpAaciwkO" Content-Disposition: inline In-Reply-To: <200702012026.l11KQ0Ia013574@dc.cis.okstate.edu> User-Agent: Mutt/1.4.2.2i Cc: freebsd-questions@freebsd.org Subject: Re: What Happens When /proc is not Mounted in FreeBSD5.4? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 01 Feb 2007 20:47:23 -0000 --M9NhX3UHpAaciwkO Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Thu, Feb 01, 2007 at 02:26:00PM -0600, Martin McCormick wrote: > Kris Kennaway writes: > > As you have found, proc is almost entirely unused in FreeBSD apart > > from one or two debugging facilities, and in fact not recommended on > > multi-user systems because the long history of security > > vulnerabilities. >=20 > Thanks to you and Fabian Keil for your succinct answers. > I took it back off and commented out the line I added to > /etc/fstab so it can be brought back temporarily when needed but > isn't just sitting there waiting for lightning to strike. You could also leave it in fstab with the noauto option so it can be easily mounted with mount /proc if needed. Kris --M9NhX3UHpAaciwkO Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (FreeBSD) iD8DBQFFwlHPWry0BWjoQKURAnTIAKDNnXvERiYXSVD1AftYNLjbVIVraACgsO3h YhokiDcftJABZSuBrmHv+2w= =jpWR -----END PGP SIGNATURE----- --M9NhX3UHpAaciwkO--