Date: Mon, 14 Aug 2000 06:49:05 +0200 From: Poul-Henning Kamp <phk@critter.freebsd.dk> To: Maxime Henrion <mux@qualys.com> Cc: freebsd-hackers@FreeBSD.ORG Subject: Re: limit processes that a user can 'see' Message-ID: <42046.966228545@critter> In-Reply-To: Your message of "Sun, 13 Aug 2000 23:03:05 %2B0200." <39970D08.4BA72541@qualys.com>
next in thread | previous in thread | raw e-mail | index | archive | help
In message <39970D08.4BA72541@qualys.com>, Maxime Henrion writes: > Hello, > >I have an idea that I would love to see applied in FreeBSD source code, >but as I'm not skilled enough to code it, I post it to see if you think >it makes sense, and if someone would be interested in coding this. It is >a security measure regarding 'ps' command. > >By using the 'ps' command, any user logged in the system can view all >the running processes, including root's one and processes of other >users. My idea is to limit a bit this behaviour. You can possibly make jail(8) do this for you... -- Poul-Henning Kamp | UNIX since Zilog Zeus 3.20 phk@FreeBSD.ORG | TCP/IP since RFC 956 FreeBSD coreteam member | BSD since 4.3-tahoe Never attribute to malice what can adequately be explained by incompetence. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?42046.966228545>