Date: Mon, 18 Dec 2000 19:13:44 -0500 From: Pete Fritchman <petef@databits.net> To: Tomasz Paszkowski <ns88@k.pl> Cc: freebsd-security@freebsd.org Subject: Re: procfs Message-ID: <20001218191344.B5569@databits.net> In-Reply-To: <20001219005756.A25653@genesis.k.pl>; from ns88@k.pl on Tue, Dec 19, 2000 at 12:57:59AM %2B0100 References: <20001219003737.C2567@genesis.k.pl> <Pine.BSF.4.21.0012181543040.86293-100000@mail.isppro.net> <20001219005756.A25653@genesis.k.pl>
next in thread | previous in thread | raw e-mail | index | archive | help
++ 19/12/00 00:57 +0100 - Tomasz Paszkowski:
>
>I was asking why everyone can access entires on procfs, which belong
>to proceses of other users ?
>
from the procfs(5) manpage:
The process file system, or procfs, implements a view of the system pro-
cess table inside the file system. It is normally mounted on /proc, and
is required for the complete operation of programs such as ps(1) and
w(1).
Certain entries are readable by everyone and these show up in the output of
commands such as ps(1). Certain entries in /proc/<pid>/ are not readable by the
world because they may contain sensitive data (such as mem, etc).
-pete
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20001218191344.B5569>