Date: Thu, 2 May 2002 13:11:02 -0400 From: Brian T.Schellenberger <bts@babbleon.org> To: "default" <default013subscriptions@hotmail.com>, "FreeBSD-Questions" <freebsd-questions@FreeBSD.ORG> Subject: Re: Restricting PS Use Message-ID: <20020502171102.EC819BB29@i8k.babbleon.org> In-Reply-To: <OE21UVOpIxvH4wBnGbw00005291@hotmail.com> References: <OE21UVOpIxvH4wBnGbw00005291@hotmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thursday 02 May 2002 12:58 pm, default wrote:
| Hello,
|
| I have been trying to get this working for a long time to no avail, but...
|
| Basically I need to restrict the PS command so that normal users are only
| able to see their own processes...
|
| I would appreciate any suggestion on how to do this...
|
- create a "ps" userid
- restrict ps so that only "PS" can execute it (root will be able to anyay).
- create a new ps command, probably just as a perl script, in /usr/local/bin
- make the perl script suid to the new "ps" id.
- Have the perl script execute ps and filter out the records you don't want.
You can now restrict ps in any way you desire.
| Thank you
|
| To Unsubscribe: send mail to majordomo@FreeBSD.org
| with "unsubscribe freebsd-questions" in the body of the message
--
Brian T. Schellenberger . . . . . . . bts@wnt.sas.com (work)
Brian, the man from Babble-On . . . . bts@babbleon.org (personal)
http://www.babbleon.org
http://www.eff.org http://www.programming-freedom.org
If you smell the smoke you don't need to be told what you've got to do;
Yet there's a certain breed, so very in-between, they'd rather take a
vote. -- DEVO -- Here To Go
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020502171102.EC819BB29>