From owner-freebsd-security@FreeBSD.ORG Sun Feb 29 12:14:35 2004 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B3BC616A4CE for ; Sun, 29 Feb 2004 12:14:35 -0800 (PST) Received: from duke.boxke.be (duke.boxke.be [62.213.198.10]) by mx1.FreeBSD.org (Postfix) with SMTP id A589743D1F for ; Sun, 29 Feb 2004 12:14:34 -0800 (PST) (envelope-from admin@inet-solutions.be) Received: (qmail 50643 invoked from network); 29 Feb 2004 20:14:33 -0000 Received: from localhost.boxke.be (HELO webmail.boxke.be) (127.0.0.1) by duke.boxke.be with SMTP; 29 Feb 2004 20:14:33 -0000 Received: from 213.224.103.192 (SquirrelMail authenticated user postmaster@inet-solutions.be) by webmail.boxke.be with HTTP; Sun, 29 Feb 2004 21:14:33 +0100 (CET) Message-ID: <1298.213.224.103.192.1078085673.squirrel@webmail.boxke.be> Date: Sun, 29 Feb 2004 21:14:33 +0100 (CET) From: "Jimmy Scott" To: freebsd-security@freebsd.org User-Agent: SquirrelMail/1.4.1 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 Importance: Normal Subject: procfs + chmod = no go X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Security issues [members-only posting] List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 29 Feb 2004 20:14:35 -0000 Hello, I was wondering if it was possible to limit user access on /proc without having to use securelevels. For some reason chmod 751 /proc (or 750) does nothing. Is this possible on FreeBSD 4.9 ? Can't find anything about it in the manual pages. Just want to prevent lusers from running: for file in /proc/*/cmdline; do cat $file; echo; done Greetz, Jimmy Scott