From owner-freebsd-current Mon Nov 15 15:11:35 1999 Delivered-To: freebsd-current@freebsd.org Received: from fasterix.frmug.org (s192.paris-90.cybercable.fr [212.198.90.192]) by hub.freebsd.org (Postfix) with ESMTP id 347FB14A01 for ; Mon, 15 Nov 1999 15:11:32 -0800 (PST) (envelope-from pb@fasterix.frmug.org) Received: (from pb@localhost) by fasterix.frmug.org (8.9.3/8.9.3/pb-19990315) id AAA29465; Tue, 16 Nov 1999 00:11:06 +0100 (CET) Message-ID: <19991116001106.A6107@fasterix.frmug.org> Date: Tue, 16 Nov 1999 00:11:06 +0100 From: Pierre Beyssac To: Matthew Dillon , Sean Eric Fagan Cc: current@FreeBSD.ORG Subject: Re: PATCH for testing References: <199911152213.OAA20176@kithrup.com> <199911152227.OAA45627@apollo.backplane.com> Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Mailer: Mutt 0.92.8i In-Reply-To: <199911152227.OAA45627@apollo.backplane.com>; from Matthew Dillon on Mon, Nov 15, 1999 at 02:27:10PM -0800 Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Mon, Nov 15, 1999 at 02:27:10PM -0800, Matthew Dillon wrote: > And, also, we need to get rid of the 'e' option to ps entirely. It's a > major security hole. Not more so than option 'u', or even 'a', if you ask me. It's common knowledge under Unix that you shouldn't put anything sensitive in the command line or the environment. When there's any risk, the best option is to remove 'ps' alltogether, IMHO. -- Pierre Beyssac pb@fasterix.frmug.org pb@fasterix.freenix.org BSD : il y a moins bien, mais c'est coté en bourse Free domains: http://www.eu.org/ or mail dns-manager@EU.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message