netbsd-users: Re: preventing users from displaying other users processes

Subject: Re: preventing users from displaying other users processes
To: Jeremy C. Reed <reed@reedmedia.net>
From: David Maxwell <david@crlf.net>
List: netbsd-users
Date: 11/17/2003 13:53:17

On Mon, Nov 17, 2003 at 09:58:50AM -0800, Jeremy C. Reed wrote:
> On Mon, 17 Nov 2003, David Maxwell wrote:
> 
> > > Subject: Re: preventing users from displaying other users processes
> > > is it possible? i have patch for 1.5.* kernels, but not for -current
> >
> > Is it implemented as a sysctl option?
> >
> > If any other BSDs made this available via sysctl we'll want to match the
> > chosen name.
> 
> FreeBSD 4.x
> kern.ps_showallprocs=0
> 
> FreeBSD 5.x
> security.bsd.see_other_uids=0
> 
> Also to prevent arguments to be viewable (and for /proc too).
> kern.ps_argsopen=0

I guess I mis-spoke. I should have said "we'll want to match the chosen
name" if it has been given a logical place in a hierarchy.

Thanks for the info, though :-)

-- 
David Maxwell, david@vex.net|david@maxwell.net -->
All this stuff in twice the space would only look half as bad!
					      - me