procfs + chmod = no go
Dag-ErlingSmørgrav
des at des.no
Mon Mar 1 04:27:41 PST 2004
"Jimmy Scott" <admin at inet-solutions.be> writes:
> Is this possible on FreeBSD 4.9 ? Can't find anything about it in the
> manual pages. Just want to prevent lusers from running:
>
> for file in /proc/*/cmdline; do cat $file; echo; done
Why? They can get the same information from ps(1) or the kern.proc
sysctl tree.
(in 5.2, you can set security.bsd.see_other_uid to 0 to prevent users
from seeing other users' processes)
DES
--
Dag-Erling Smørgrav - des at des.no
More information about the freebsd-security
mailing list