From owner-freebsd-current Tue Nov 23 15:57: 0 1999 Delivered-To: freebsd-current@freebsd.org Received: from critter.freebsd.dk (critter.freebsd.dk [212.242.40.131]) by hub.freebsd.org (Postfix) with ESMTP id 287C81542A; Tue, 23 Nov 1999 15:56:55 -0800 (PST) (envelope-from phk@critter.freebsd.dk) Received: from critter.freebsd.dk (localhost [127.0.0.1]) by critter.freebsd.dk (8.9.3/8.9.2) with ESMTP id AAA31377; Wed, 24 Nov 1999 00:54:16 +0100 (CET) (envelope-from phk@critter.freebsd.dk) To: Brian Somers Cc: Dan Nelson , Forrest Aldrich , freebsd-current@FreeBSD.ORG, security@FreeBSD.ORG Subject: Re: ps on 4.0-current In-reply-to: Your message of "Tue, 23 Nov 1999 23:52:49 GMT." <199911232352.XAA01547@hak.lan.Awfulhak.org> Date: Wed, 24 Nov 1999 00:54:15 +0100 Message-ID: <31375.943401255@critter.freebsd.dk> From: Poul-Henning Kamp Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG In message <199911232352.XAA01547@hak.lan.Awfulhak.org>, Brian Somers writes: >> In the last episode (Nov 23), Brian Somers said: >> > $ ps jtva >> > USER PID PPID PGID SESS JOBC STAT TT TIME COMMAND >> > root 222 1 222 9dac40 0 Is+ va 0:00.01 (getty) >> > $ sudo ps jtva >> > USER PID PPID PGID SESS JOBC STAT TT TIME COMMAND >> > root 222 1 222 9dac40 0 Is+ va 0:00.01 /usr/libexec/getty Pc tt >> > $ head -1 /etc/motd >> > FreeBSD 4.0-CURRENT (HAK) #9: Mon Nov 22 01:09:55 GMT 1999 >> > >> > This looks a bit wrong.... >> >> Now that does look weird. After a bit more investigation, it looks >> like you can only get the full commandline of your own processes. Root >> can see all commandlines. >Any comments Poul ? Is this anything to do with the recent command >line buffering ? Yes, I changed it to this behaviour at warners asking (I think he had the security-meister hard-hat on at the time). I'm personally leaning towards the opinion that the argv is public property and should be visible, but then again, I can see the point in hiding it in some circumstances. I'll stick a sysctl in there which defaults to the "open" position and people who need to hide it can set it to "close" to do so. Will this satisfy everybody ? Warner ? -- Poul-Henning Kamp FreeBSD coreteam member phk@FreeBSD.ORG "Real hackers run -current on their laptop." FreeBSD -- It will take a long time before progress goes too far! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message