procfs + chmod = no go

• Previous message: User Mailinglist: "Re: Darkstat"
• Next in thread: Vlad Galu: "Re: procfs + chmod = no go"
• Reply: Vlad Galu: "Re: procfs + chmod = no go"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Sun, 29 Feb 2004 21:14:33 +0100 (CET)
To: freebsd-security@freebsd.org

Hello,

I was wondering if it was possible to limit user access on /proc
without having to use securelevels.
For some reason chmod 751 /proc (or 750) does nothing.

Is this possible on FreeBSD 4.9 ? Can't find anything about it in the
manual pages. Just want to prevent lusers from running:

for file in /proc/*/cmdline; do cat $file; echo; done

Greetz,

Jimmy Scott
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"

• Previous message: User Mailinglist: "Re: Darkstat"
• Next in thread: Vlad Galu: "Re: procfs + chmod = no go"
• Reply: Vlad Galu: "Re: procfs + chmod = no go"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: procfs + chmod = no go ... |I was wondering if it was possible to limit user access on /proc ... |without having to use securelevels. ... |Is this possible on FreeBSD 4.9? ... |To unsubscribe, send any mail to ... (FreeBSD-Security) Re: nfs mounts / su / yp ... >> FreeBSD has securelevels, while not ideal, if implemented properly ... >> they can limit what root can do. ... In that case securelevels don't help. ... I didn't realize you were talking about physical access. ... (FreeBSD-Security)