Re: Debian-Harden

To: debian-devel@lists.debian.org
Subject: Re: Debian-Harden
From: Mike Fedyk <mfedyk@matchmail.com>
Date: Tue, 15 May 2001 20:06:16 -0700
Message-id: <[🔎] 20010515200616.A16323@mikef-linux.matchmail.com>
Mail-followup-to: Mike Fedyk <mfedyk@matchmail.com>, debian-devel@lists.debian.org
In-reply-to: <[🔎] 20010515155610.C14546@plato.local.lan>; from erbenson@alaska.net on Tue, May 15, 2001 at 03:56:10PM -0800
References: <[🔎] 20010515084333.A619@billgotchy.de> <[🔎] 20010515105244.E15731@justice.loyola.edu> <[🔎] 20010515163937.A19889@bolthole.com> <[🔎] 20010515155610.C14546@plato.local.lan>

On Tue, May 15, 2001 at 03:56:10PM -0800, Ethan Benson wrote:
> On Tue, May 15, 2001 at 04:39:37PM -0700, phil@bolthole.com wrote:
> > 
> > I would think changing the owner/perms on the pid area of /proc should be a
> > relatively straightforward kernel hack.
> 
> thats exactly what the openwall patch does, it lets you leave them
> group readable by some group (say wheel) so non-root admins can still
> see all processes.  
> 
> but really i don't see the point what does hiding this kind of
> information get you?  sounds like security though obscurity to me.  
> 
> about the only argument i can see is it gives users a bit more privacy
> since other users can't see what stuff they are running...  
> 
Yes, and some white hat can't see if another user is trying to crack
passwords either... heh.

Reply to:

References:
- Debian-Harden
  - From: <list@lists.debian.org>
- Re: Debian-Harden
  - From: Michael Stone <mstone@debian.org>
- Re: Debian-Harden
  - From: phil@bolthole.com
- Re: Debian-Harden
  - From: Ethan Benson <erbenson@alaska.net>

Prev by Date: Re: how to implement a renamed package
Next by Date: anyone going to USENIX?
Previous by thread: Re: Debian-Harden
Next by thread: Re: Debian-Harden
Index(es):
- Date
- Thread