From owner-freebsd-hackers@FreeBSD.ORG Tue Mar 29 19:35:56 2005 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 366D516A4CE for ; Tue, 29 Mar 2005 19:35:56 +0000 (GMT) Received: from mindfields.energyhq.es.eu.org (73.Red-213-97-200.pooles.rima-tde.net [213.97.200.73]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7D19343D48 for ; Tue, 29 Mar 2005 19:35:52 +0000 (GMT) (envelope-from flynn@energyhq.es.eu.org) Received: from scienide.energyhq.es.eu.org (scienide.energyhq.es.eu.org [IPv6:2001:470:1f01:198:210:4bff:fe3d:e256]) by mindfields.energyhq.es.eu.org (Postfix) with SMTP id 9576E355EB; Tue, 29 Mar 2005 21:35:50 +0200 (CEST) Date: Tue, 29 Mar 2005 21:35:28 +0200 From: Miguel Mendez To: "H. S." Message-Id: <20050329213528.59dab2e2.flynn@energyhq.es.eu.org> In-Reply-To: <61910.81.84.174.37.1112123946.squirrel@mail.revolutionsp.com> References: <61910.81.84.174.37.1112123946.squirrel@mail.revolutionsp.com> X-Mailer: Sylpheed version 1.9.5 (GTK+ 2.6.4; i386-portbld-freebsd5.4) Mime-Version: 1.0 Content-Type: multipart/signed; protocol="application/pgp-signature"; micalg="PGP-SHA1"; boundary="Signature=_Tue__29_Mar_2005_21_35_28_+0200_.E0Fc9_bWDttBM9d" cc: freebsd-hackers@freebsd.org Subject: Re: A few thoughts.. X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 29 Mar 2005 19:35:56 -0000 --Signature=_Tue__29_Mar_2005_21_35_28_+0200_.E0Fc9_bWDttBM9d Content-Type: text/plain; charset=US-ASCII Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Tue, 29 Mar 2005 13:19:06 -0600 (CST) "H. S." wrote: > [USERNAME@SERVER:/home/USERNAME]$ ./dmesg > Copyright (c) 1992-2004 The FreeBSD Project. > Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994 [...] > real memory =3D 83886080 (80 MB) > avail memory =3D 72318976 (68 MB) > My "USERNAME" account doesn't have access to /sbin/dmesg, but I uploaded a > /sbin/dmesg from a 5.2.1-RELEASE to a 5.3-STABLE box, and then I could > have access to this system information. The same goes for systat , vmstat, > and all these commands that (most people think) shouldn't be available for > regular users. If you don't want users to run random binaries put /home and /tmp on their own partitions and mount them noexec. Also note that users can still read that info by accessing /var/log/messages and /var/run/ dmesg.boot > Shouldn't this information be protected at kernel level? Am I missing > something I can do about this ? Because this method works with everything > that ressembles permissions in order to hide system information that can > be obtained without root privileges. Sounds like security through obscurity to me. If you don't trust your shell users put them in a jail, where any bad behaviour can be contained. > If you can't trust your logs.. This also poses another problem, with a > little patience, one can fill up /var. =20 > Lastly, anyone knows if FreeBSD is getting systrace support ? I think of > it as a major drawback in the security field, one can do very interesting > things with systrace. Added with other freebsd features (jails, etc), it > makes a very good security tool. Have a look at mac(3), mac(4) and mac.conf(5), it's not systrace but you ca= n achieve similar results. Cheers, --=20 Miguel Mendez http://www.energyhq.es.eu.org PGP Key: 0xDC8514F1 --Signature=_Tue__29_Mar_2005_21_35_28_+0200_.E0Fc9_bWDttBM9d Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.0 (FreeBSD) iD8DBQFCSa4EnLctrNyFFPERAh27AJwP7eViE+d9CTZ1/2EBvJ5TnIYP9wCgrX3i seDsr1QRgxYT8Fa7tz8XGGY= =qd62 -----END PGP SIGNATURE----- --Signature=_Tue__29_Mar_2005_21_35_28_+0200_.E0Fc9_bWDttBM9d--