Re: Bits from the Security Team

To: debian-devel@lists.debian.org
Subject: Re: Bits from the Security Team
From: Vincent Danjean <Vincent.Danjean@ens-lyon.org>
Date: Thu, 06 Mar 2014 00:54:00 +0100
Message-id: <[🔎] 5317B918.10209@ens-lyon.org>
In-reply-to: <[🔎] 20140305213323.GA9381@jwilk.net>
References: <20140305190301.GA2912@pisco.westfalen.local> <[🔎] 20140305195409.GB23080@bogon.m.sigxcpu.org> <[🔎] 20140305213323.GA9381@jwilk.net>

On 05/03/2014 22:33, Jakub Wilk wrote:
> * Guido Günther <agx@sigxcpu.org>, 2014-03-05, 20:54:
>> I looked at the docs and as I read them this would affect uid 0 as well.
> 
> Luckily this is not the case. :) root can see other users' /proc
> entries just fine. Perhaps the documentation should be improved.

  So, it means that most of live supervision I was doing from time to
time as a 'normal' user will need to be done as root (top,
ps axf, ...)
  I'm not sure I will let this setup (hidepid=1) on my computers. My
current POV (that can change) is that I prefer to be able to do the
maximum of thing as a normal user (top, ps, read log (I'm in the
adm group), ...) ans switch to root when I really need to do some
modifications.

  Regards,
    Vincent

Reply to:

Follow-Ups:
- Re: Bits from the Security Team
  - From: Craig Small <csmall@debian.org>

References:
- Re: Bits from the Security Team
  - From: Guido Günther <agx@sigxcpu.org>
- Re: Bits from the Security Team
  - From: Jakub Wilk <jwilk@debian.org>

Prev by Date: Re: Bits from the Security Team
Next by Date: Re: Bits from the Security Team
Previous by thread: Re: Bits from the Security Team
Next by thread: Re: Bits from the Security Team
Index(es):
- Date
- Thread