Re: Debian-Harden

To: debian-devel@lists.debian.org
Subject: Re: Debian-Harden
From: Matt Zimmerman <mdz@debian.org>
Date: Tue, 15 May 2001 15:26:16 -0400
Message-id: <[🔎] 20010515152614.C1038@alcor.net>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 20010515105244.E15731@justice.loyola.edu>; from mstone@debian.org on Tue, May 15, 2001 at 10:52:44AM -0400
References: <[🔎] 20010515084333.A619@billgotchy.de> <[🔎] 20010515105244.E15731@justice.loyola.edu>

On Tue, May 15, 2001 at 10:52:44AM -0400, Michael Stone wrote:

> On Tue, May 15, 2001 at 08:43:33AM +0200,
> bounce-debian-devel=mstone=cs.loyola.edu@lists.debian.org wrote:
> > There are some commands on System, which are similar useable for root and
> > user. Think of ps, everyone on an linux-system is able to run "ps aux", so
> > it is shown all processes of the host.  I think, it it fully enaough, to
> > let an user only make ps -a", for example, to see the own processes.
> 
> That level of information hiding is out of scope for a general unix system.
> It does exist, but not in the standard linux kernel. Changing ps to hide
> information is futile, as someone could bring their own ps.

It is a standard part of a security-enhanced unix-like system, though.  This
functionality is included in, for example, the Openwall patches for the Linux
kernel.

-- 
 - mdz

Reply to:

Follow-Ups:
- Re: Debian-Harden
  - From: David Spreen <david@spreen.de>

References:
- Debian-Harden
  - From: <list@lists.debian.org>
- Re: Debian-Harden
  - From: Michael Stone <mstone@debian.org>

Prev by Date: Re: RFC: Extending sources.list for use in pool and other locations
Next by Date: Re: debian constitution as map
Previous by thread: Re: Debian-Harden
Next by thread: Re: Debian-Harden
Index(es):
- Date
- Thread