From owner-freebsd-current  Mon Nov 15 15:56:35 1999
Delivered-To: freebsd-current@freebsd.org
Received: from mail.rpi.edu (mail.rpi.edu [128.113.100.7])
	by hub.freebsd.org (Postfix) with ESMTP id AEC2114E44
	for <current@FreeBSD.ORG>; Mon, 15 Nov 1999 15:56:31 -0800 (PST)
	(envelope-from drosih@rpi.edu)
Received: from [128.113.24.47] (gilead.acs.rpi.edu [128.113.24.47])
	by mail.rpi.edu (8.9.3/8.9.3) with ESMTP id SAA53544;
	Mon, 15 Nov 1999 18:56:20 -0500
Mime-Version: 1.0
X-Sender: drosih@mail.rpi.edu
Message-Id: <v04210102b4564d03f393@[128.113.24.47]>
In-Reply-To: <199911152248.dAFMmaQ18726@orthanc.ab.ca>
References: <199911152248.dAFMmaQ18726@orthanc.ab.ca>
Date: Mon, 15 Nov 1999 18:57:49 -0500
To: Lyndon Nerenberg <lyndon@orthanc.ab.ca>, current@FreeBSD.ORG
From: Garance A Drosihn <drosih@rpi.edu>
Subject: Re: ps -e
Content-Type: text/plain; charset="us-ascii" ; format="flowed"
Sender: owner-freebsd-current@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

At 3:48 PM -0700 11/15/99, Lyndon Nerenberg wrote:
> >>>>> "Matthew" == Matthew Dillon <dillon@apollo.backplane.com> writes:
>
>    Matthew>     Why don't we get rid of the 'e' option to ps while we
>    Matthew> are at it considering how much of a security hole it is.
>
>I wouldn't nuke it completely. Make -e a noop unless the real uid ps
>is running with matches the effective uid of the process being reported.
>And if ps is invoked with a real uid of 0, -e works as it does now.

I'd favor something like this.  The unixes I am most used to did not
have '-e' as an option, and I had two immediate reactions when I found
freebsd's did:
    1) wow, this is great for debugging a problem I'm having
    2) yikes, what a security exposure!  (I have some scripts
       where a password is passed from one script to another
       one via an environment variable...)

So, I'd like to have it for debugging my own processes, but
reduce the security implications of letting everyone else
also do it on my own processes...  I realize this doesn't
eliminate the security exposure, but at least it reduces
it some.


---
Garance Alistair Drosehn           =   gad@eclipse.acs.rpi.edu
Senior Systems Programmer          or  drosih@rpi.edu
Rensselaer Polytechnic Institute


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-current" in the body of the message