From owner-freebsd-security  Wed Aug 12 19:27:09 1998
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id TAA23494
          for freebsd-security-outgoing; Wed, 12 Aug 1998 19:27:09 -0700 (PDT)
          (envelope-from owner-freebsd-security@FreeBSD.ORG)
Received: from Tyr.office.EFN.org ([204.214.99.45])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id TAA23487
          for <freebsd-security@FreeBSD.ORG>; Wed, 12 Aug 1998 19:27:06 -0700 (PDT)
          (envelope-from spy@tyr.office.efn.org)
Received: from Tyr.office.EFN.org (IDENT:spy@Tyr.office.EFN.org [204.214.99.45])
	by Tyr.office.EFN.org (8.9.1/8.9.1) with SMTP id TAA22685;
	Wed, 12 Aug 1998 19:26:23 -0700 (PDT)
Date: Wed, 12 Aug 1998 19:26:23 -0700 (PDT)
From: Ben <spy@tyr.office.efn.org>
Reply-To: ben@efn.org
To: andrewr <andrewr@slack.net>
cc: ben@efn.org, freebsd-security@FreeBSD.ORG
Subject: Re: Possible security "risk" in ftp client
In-Reply-To: <Pine.NEB.3.96.980812210035.27880A-100000@brooklyn.slack.net>
Message-ID: <Pine.BSF.3.96.980812192424.22664A-100000@Tyr.office.EFN.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

Maybe I'm mistaken, but ps(1) get's the info from /dev/kmem and /dev/mem and
formats them according to /kernel, what would I need to patch?

On Wed, 12 Aug 1998, andrewr wrote:

> 
> 
> On Wed, 12 Aug 1998, Ben wrote:
> 
> > For ps I made a patch that allows only root(or wheel, you pick) to use the
> > flag '-a', otherwise the user attempting to use '-a' only gets his/her proc's.
> 
> Did you patch the kernel as well?  Caue if you didn't, it's useless. 

	-ben@efn.org


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe security" in the body of the message