From owner-freebsd-hackers Wed Sep 8 18:55:22 1999 Delivered-To: freebsd-hackers@freebsd.org Received: from ddsecurity.com.br (vitoria.ddsecurity.com.br [200.18.130.93]) by hub.freebsd.org (Postfix) with SMTP id 2FE9C14BD7 for ; Wed, 8 Sep 1999 18:55:16 -0700 (PDT) (envelope-from grios@ddsecurity.com.br) Received: (qmail 14434 invoked from network); 9 Sep 1999 01:55:02 -0000 Received: from unknown (HELO ddsecurity.com.br) (200.236.148.112) by vitoria.ddsecurity.com.br with SMTP; 9 Sep 1999 01:55:02 -0000 Message-ID: <37D71370.45BCA505@ddsecurity.com.br> Date: Wed, 08 Sep 1999 22:54:56 -0300 From: Gustavo V G C Rios X-Mailer: Mozilla 4.51 [en] (X11; I; FreeBSD 3.3-RC i386) X-Accept-Language: en MIME-Version: 1.0 To: chris@calldei.com Cc: freebsd-hackers@FreeBSD.ORG Subject: Re: CS Project References: <37D7056D.97260A49@ddsecurity.com.br> <19990908203812.A98739@holly.calldei.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Chris Costello wrote: > > On Wed, Sep 08, 1999, Gustavo V G C Rios wrote: > > Dear gentleman, > > > One clear example: > > No user(but only that ones previous allowed to) should be able to see > > other users process. This facility have to be done at kernel level, > > (that's what i think). > > Define "see". Access the memory? See that it is running? > View the argv list? I don't see how this would affect privacy. > > -- > |Chris Costello > |Your fault, core dumped. > `---------------------------------- > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-hackers" in the body of the message Cannot see: it would not be possible for user (except the owner) to see that the process exists: For instance: (my current system) myname:~> ps auxwf USER PID %CPU %MEM VSZ RSS TT STAT STARTED TIME COMMAND root 240 7.8 10.9 15288 14036 ?? S 9:00PM 8:49.59 /usr/X11R6/bin/X -auth /usr/X11R6/lib/X11/wdm/authdir/authfiles/A:0-iP root 1 0.0 0.2 496 256 ?? Is 6:00PM 0:00.07 /sbin/init -- root 2 0.0 0.0 0 0 ?? DL 6:00PM 0:00.01 (pagedaemon) root 3 0.0 0.0 0 0 ?? DL 6:00PM 0:00.00 (vmdaemon) root 4 0.0 0.0 0 0 ?? DL 6:00PM 0:01.26 (syncer) root 32 0.0 0.1 204 80 ?? Is 6:00PM 0:00.00 adjkerntz -i root 89 0.0 0.4 824 568 ?? Is 9:00PM 0:01.25 syslogd root 130 0.0 0.4 864 472 ?? Is 9:00PM 0:00.01 inetd root 133 0.0 0.4 992 568 ?? Is 9:00PM 0:00.28 cron root 137 0.0 0.4 832 568 ?? Is 9:00PM 0:00.01 /usr/sbin/lpd root 146 0.0 0.5 832 588 ?? S 9:00PM 0:00.06 /usr/sbin/lpd root 178 0.0 0.3 792 432 ?? Ss 9:00PM 0:04.08 moused -p /dev/cuaa1 -t auto root 191 0.0 0.2 500 312 con- I+ 9:00PM 0:00.01 /bin/sh /usr/local/bin/safe_mysqld root 205 0.0 1.3 11032 1724 con- I+ 9:00PM 0:00.06 /usr/local/libexec/mysqld --basedir=/usr/local --datadir=/var/db/mysql root 206 0.0 0.7 1148 888 ?? Is 9:00PM 0:00.92 /usr/local/sbin/sshd (sshd1) root 235 0.0 0.4 828 548 v2 Is+ 9:00PM 0:00.01 /usr/libexec/getty Pc ttyv2 root 236 0.0 0.4 828 548 v3 Is+ 9:00PM 0:00.01 /usr/libexec/getty Pc ttyv3 root 237 0.0 1.2 2724 1512 ?? I 9:00PM 0:00.10 /usr/X11R6/bin/wdm -nodaemon ttyv4 root 241 0.0 1.3 2744 1688 ?? I 9:00PM 0:00.02 -:0 (wdm) grios 254 0.1 2.1 3352 2716 ?? S 9:00PM 0:08.95 /usr/X11R6/bin/wmaker grios 268 0.0 0.8 1576 1072 ?? S 9:00PM 0:11.80 wmnet grios 269 0.0 0.8 1512 968 ?? S 9:00PM 0:03.88 wmmixer -w grios 270 0.0 0.9 1684 1180 ?? S 9:00PM 0:00.36 wmdate -s grios 271 0.0 0.8 1524 1012 ?? S 9:00PM 0:17.23 wmtictactoe grios 272 0.0 0.9 1660 1180 ?? S 9:00PM 0:03.07 wmitime grios 273 0.0 1.0 1744 1240 ?? S 9:00PM 0:08.85 ascpu -withdrawn -u 1 -sys red -nice yellow -user blue -idle white -ex grios 274 0.0 0.9 1676 1184 ?? S 9:00PM 0:23.74 wmSun grios 275 0.0 1.2 2064 1508 ?? S 9:00PM 0:24.84 wmCalClock grios 276 0.0 0.8 1576 976 ?? S 9:00PM 0:02.30 wmnetselect root 1213 0.0 0.3 468 344 v1 Is+ 10:36PM 0:00.07 -csh (csh) root 1254 0.0 0.8 1400 1032 ?? Ss 10:46PM 0:00.09 ppp -background td grios 1256 0.0 14.0 20148 17996 ?? S 10:46PM 0:04.92 /usr/local/netscape-4.51/communicator-4.51.bin grios 1257 0.0 10.6 16068 13680 ?? I 10:46PM 0:00.06 (dns helper) (communicator-4.5) grios 1259 0.0 0.8 1516 976 ?? S 10:46PM 0:00.18 wmcdplay -w root 1266 0.0 2.2 3224 2872 ?? R 10:48PM 0:00.11 xterm grios 1267 0.0 0.4 992 504 p0 Ss 10:48PM 0:00.04 -bash (bash) root 0 0.0 0.0 0 0 ?? DLs 6:00PM 0:00.00 (swapper) grios 1269 0.0 0.2 404 240 p0 R+ 10:48PM 0:00.00 ps -auxwf After changes made by me: myname:~> ps auxwf USER PID %CPU %MEM VSZ RSS TT STAT STARTED TIME COMMAND grios 274 0.0 0.9 1676 1184 ?? S 9:00PM 0:24.03 wmSun grios 275 0.0 1.2 2064 1508 ?? S 9:00PM 0:25.15 wmCalClock grios 276 0.0 0.8 1576 976 ?? S 9:00PM 0:02.32 wmnetselect grios 1256 0.0 14.0 20148 17996 ?? S 10:46PM 0:05.56 /usr/local/netscape-4.51/communicator-4.51.bin grios 1257 0.0 10.6 16068 13680 ?? I 10:46PM 0:00.06 (dns helper) (communicator-4.5) grios 1259 0.0 0.8 1516 976 ?? S 10:46PM 0:00.28 wmcdplay -w grios 1267 0.0 0.4 992 504 p0 Ss 10:48PM 0:00.04 -bash (bash) grios 254 0.0 2.1 3352 2728 ?? S 9:00PM 0:09.19 /usr/X11R6/bin/wmaker I would be able to see any other proccess which i am not the owner, top would indicated, only 8 proccess, for this current scenario. do you understand now, what i meant? Linux already have such a facility! Thanks a lot! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message