Disable w / who
Dan Nelson
dnelson at allantgroup.com
Wed Apr 2 18:30:42 UTC 2014
In the last episode (Apr 02), Kenta S. said:
> On 04/02/2014 at 11:30 AM, "Dan Nelson" <dnelson at allantgroup.com> wrote:
> >
> >Also remember to remove /var/run/utx.active, /var/log/utx.*,
> >the netstat, sockstat, and lsof commands,
>
> "sysctl security.bsd.see_other_uids=0" solves this, doesn't it?
> FreeBSD doesn't include lsof.
Interesting. It looks like that sysctl does do what you need - hiding
processes and TCP sockets owned by other users. You'll still need to
remove/protect any logfiles that might store IP addresses, like the utx.*
files and other files in /var/log/ .
--
Dan Nelson
dnelson at allantgroup.com
More information about the freebsd-questions
mailing list