tech-kern: Re: ps ax availability for non-root

Subject: Re: ps ax availability for non-root
To: Hubert Feyrer <hubert.feyrer@informatik.fh-regensburg.de>
From: Joseph Mallett <jmallett@newgold.net>
List: tech-kern
Date: 04/13/2001 09:27:52

Maybe depending on the securelevel, i.e. -1, 0, 1, 2, availability of
things like top, ps, etc. to non-root should be negated or enabled?

Why would one do this anyway? the only reasoin I point out the above is it
doesn't add a new sysctl variable, and would build upon exisiting ideas if
such a thing is needed (which I doubt).

/joseph

--
Joseph Mallett           Security Specialist
jmallett@newgold.net         www.newgold.net

irc.newgold.net/#xMach       xMach Core Team
jmallett@xMach.org             www.xMach.org

On Fri, 13 Apr 2001, Hubert Feyrer wrote:

> On Fri, 13 Apr 2001 wojtek@3miasto.net wrote:
> > and then lines for sysctl interface (kern.user_ps_ax ?) for user_ps_ax
> > variable which defaults to 1 but could be changed to 0.
> 
> What about systat? and top? and all the other userland kvm grovlers, that 
> don't use the proc sysctls?
> 
> 
>  - Hubert
> 
> -- 
> Hubert Feyrer <hubert.feyrer@informatik.fh-regensburg.de>
> 
>