It could be part of login classes, and limit user per user who can see
others' processes. This would be the "best" way, but not the easiest one.

/joseph

--
Joseph Mallett           Security Specialist
jmallett@newgold.net         www.newgold.net

irc.newgold.net/#xMach       xMach Core Team
jmallett@xMach.org             www.xMach.org

On Fri, 13 Apr 2001 wojtek@3miasto.net wrote:

> > Subject: Re: ps ax availability for non-root
> > 
> > Maybe depending on the securelevel, i.e. -1, 0, 1, 2, availability of
> > things like top, ps, etc. to non-root should be negated or enabled?
> 
> yes. i think that is should be automatic at securelevel >1 but there are
> people that say that it should be selectable behavior. 
> any idea other than new sysctl variable?
>  
> > Why would one do this anyway? the only reasoin I point out the above is it
> > doesn't add a new sysctl variable, and would build upon exisiting ideas if
> > such a thing is needed (which I doubt).
> 
>