Date: Wed, 12 Aug 1998 14:42:25 -0700 (PDT) From: Ben <spy@tyr.office.efn.org> To: andrewr <andrewr@slack.net> Cc: Garrett Wollman <wollman@khavrinen.lcs.mit.edu>, Marc Slemko <marcs@znep.com>, "Mark J. Taylor" <mtaylor@cybernet.com>, freebsd-security@FreeBSD.ORG Subject: Re: Possible security "risk" in ftp client Message-ID: <Pine.BSF.3.96.980812134552.20149A-100000@Tyr.office.EFN.org> In-Reply-To: <Pine.NEB.3.96.980811213226.17677B-100000@brooklyn.slack.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 11 Aug 1998, andrewr wrote: > On Tue, 11 Aug 1998, Garrett Wollman wrote: > > > > > I think there are good reasons (and this is one of them) to disable > > the environment-dumping option of ps. Unfortunately it is probably > > too well-entrenched to kill. I had totally forgotten about it until > > this discussion began. > > > > -GAWollman > > For awhile now, I've been wanting to change alot of things dealing with ps > and proc. What I mean is, privacy. I believe there should be an option > on install or perhaps a patch to ps(1), w(1), and who knows what others, > that will not allow normal users to view the processes of other normal > users (or superusers for that matter). However, /proc is a way for a > normal user to view what programs are being run for what id, and the uid > is easy enough see (ls -l), (thanks jtb). Don't you think this should be > an optional patch? For ps I made a patch that allows only root(or wheel, you pick) to use the flag '-a', otherwise the user attempting to use '-a' only gets his/her proc's. Available at: http://www.efn.org/~ben/ps/diff.txt For the diff between the 2.2.7-RELEASE ps.c and mine. (/usr/src/bin/ps.c) http://www.efn.org/~ben/ps/results.txt Demonstration of it in action. http://www.efn.org/~ben/ps/ps.c http://www.efn.org/~ben/ps/ps.old.c My ps.c and the old ps.c. http://www.efn.org/~ben/ps/ps.root.gz http://www.efn.org/~ben/ps/ps.wheel.gz Binaries for 2.2.7 that allow only root, or wheel to use the -a flag correctly. > > Andrew -ben@efn.org EFN News Administrator. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.96.980812134552.20149A-100000>