Re: encryption

To: debian-user@lists.debian.org
Subject: Re: encryption
From: Reco <recoverym4n@gmail.com>
Date: Sun, 22 Apr 2018 12:42:04 +0300
Message-id: <[🔎] 20180422094202.x7f7vfp2bh33exyj@p5k.home>
In-reply-to: <[🔎] slrnpdok9r.2qj.curty@einstein.electron.org>
References: <[🔎] 20042018201750.130d9143617e@desktop.copernicus.org.uk> <[🔎] 20180421163605.GA8694@alum> <[🔎] 21042018185805.6d8f2ce1c3ab@desktop.copernicus.org.uk> <[🔎] 20180421185403.GB9661@alum> <[🔎] 21042018195951.26d5b9bcb7f0@desktop.copernicus.org.uk> <[🔎] 20180422022055.GB20493@alum> <[🔎] slrnpdok9r.2qj.curty@einstein.electron.org>

	Hi.

On Sun, Apr 22, 2018 at 09:07:04AM +0000, Curt wrote:
> On 2018-04-22, David Wright <deblis@lionunicorn.co.uk> wrote:
> >> 
> >> I am not after winning any races but (seeing as you brought the issue
> >> up) knowing whether ps sees my secret and how to go about finding that
> >> out.
> >
> > ps might not be the best tool for deliberately finding the info above.
> > The obvious place to look is /proc/<PID>/cmdline (where NULs separate
> > the items). One can imagine a scenario where one tries to keep up with
> > the PID incrementation and hoover up all the cmdlines on the system as
> > they fly by.
> >
> 
> There is a mount option to the proc filesystem ('hidepid') that appears
> to be designed to harden against the envisioned scenario (if I'm
> understanding correctly--may not be the case, though).
> 
> https://debian-administration.org/article/702/Hiding_processes_from_other_users
> 
> Perhaps this is now obsolete information or something.

No, it's slightly outdated (they don't put /proc entry in fstab in
stretch by default), but still useful.


> Maybe not because in my Stretch man page for proc right at the top
> I see the hidepid mount option.

It's in the kernel documentation:

/usr/share/doc/linux-doc-4.9/Documentation/filesystems/proc.txt.gz

and it works:

$ id
uid=1000(user) gid=1000(user) groups=1000(user)...

$ mount | grep proc
proc on /proc type proc (rw,relatime,hidepid=2)
systemd-1 on /proc/sys/fs/binfmt_misc type autofs (rw,relatime,fd=32,pgrp=1,timeout=0,minproto=5,maxproto=5,direct,pipe_ino=8539)
binfmt_misc on /proc/sys/fs/binfmt_misc type binfmt_misc (rw,relatime)

$ ls -d /proc/[0-9]* | wc -l
3


> Here (from 2014)
> 
> https://lists.debian.org/debian-devel-announce/2014/03/msg00004.html
> 
> it is said "* We're planning to request for hidepid to be enabled by
>  default (to 1). This will squash an entire class of information leaks. If 
>  you have any comments or objections, please get in touch with us.
> 
> but I can't seem to discover whether that was realized or not--from what
> you people are saying, I guess not (hidepid=1 doesn't appear as a proc
> mount option on my upgraded since Methuselah Stretch machine).

That's because it's not a default setting. My guess is a certain Modern
Desktop Environment™ breaks somehow if hidepid > 0 is in use. 

Reco

Reply to:

Follow-Ups:
- Re: encryption
  - From: Brian <ad44@cityscape.co.uk>

References:
- encryption
  - From: Brian <ad44@cityscape.co.uk>
- Re: encryption
  - From: David Wright <deblis@lionunicorn.co.uk>
- Re: encryption
  - From: Brian <ad44@cityscape.co.uk>
- Re: encryption
  - From: David Wright <deblis@lionunicorn.co.uk>
- Re: encryption
  - From: Brian <ad44@cityscape.co.uk>
- Re: encryption
  - From: David Wright <deblis@lionunicorn.co.uk>
- Re: encryption
  - From: Curt <curty@free.fr>

Prev by Date: Re: encryption
Next by Date: Re: X does not work in Debian 9.4
Previous by thread: Re: encryption
Next by thread: Re: encryption
Index(es):
- Date
- Thread