From owner-freebsd-questions Wed Jan 30 21:52:54 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mail.27in.tv (roc-66-24-112-7.rochester.rr.com [66.24.112.7]) by hub.freebsd.org (Postfix) with ESMTP id 948DF37B404 for ; Wed, 30 Jan 2002 21:52:50 -0800 (PST) Received: (from root@localhost) by mail.27in.tv (8.11.6/8.11.6) id g0V5qmV73854; Thu, 31 Jan 2002 00:52:48 -0500 (EST) (envelope-from cjm2@earthling.net) Received: from maxpower (trilluser@maxpower.lan.27in.tv [10.0.0.250]) by mail.27in.tv (8.11.6/8.11.6av) with SMTP id g0V5qi873840; Thu, 31 Jan 2002 00:52:44 -0500 (EST) (envelope-from cjm2@earthling.net) From: "C J Michaels" To: "ekoz" Cc: Subject: RE: ps -aux Date: Thu, 31 Jan 2002 00:53:22 -0500 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) In-Reply-To: <021901c1aa11$fe562930$d4e18aca@melsa.net.id> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal X-Virus-Scanned: by AMaViS perl-11 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG ekoz, 1. Ditch the HTML e-mails, most people on this list delete them. 2. Did you check the man page for ps(1)? If you do you'll find this: SYNOPSIS ps [-aCcefhjlmrSTuvwx] [-M core] [-N system] [-O fmt] [-o fmt] [-p pid] [-t tty] [-U username] [-W swap] ps [-L] [...] -U Display the processes belonging to the specified username. 3. Securing the box... gawd, where to begin... There's got to be a faq out there somewhere. I would suggest the following (this is by no means complete): a. Enable QUOTAs and configure them. b. Enable a firewall of some sort, ifpw or ipfilters, lock it down and set it up stateful to make it more difficult for users to make use of listening (daemon/server) processes. (e.g. starting their own irc server.) c. Configure /etc/login.conf with some fairly restrictive limits, based on what you want your users to be able to do, and your system resources. This will help cut down on one person eating up all your resources (cpu, memory, pids, etc..) d. I would restrict /sbin, /usr/sbin from everyone but gid=operator, but that's just me, at the very least I wouldn't allow them to use ping/traceroute and the like. e. Run something like jack-the-ripper to ferrit out simple, easily cracked passwords. 4. Remember to check all available resources (handbook, FAQ, mailing list archives) before asking a question, there are alot of people who put alot of hard work into documenting this great operating system. Don't let it be in vain. http://www.freebsd.org/docs.html#books <<-- where the docs are. Also, check out: http://www.freebsddiary.org/ Hope this helps, --Chris -----Original Message----- From: owner-freebsd-questions@FreeBSD.ORG [mailto:owner-freebsd-questions@FreeBSD.ORG]On Behalf Of ekoz Sent: Wednesday, January 30, 2002 11:45 PM To: freebsd-questions@FreeBSD.ORG Subject: ps -aux Hi All, I have a silly question..:) , How to make "ps -aux" only show user's process not all the process and how to make my shell server more secure. By the way , its about 10 to 20 user log in to my server. TIA ekoz To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message