Date: Tue, 16 Nov 1999 00:11:06 +0100 From: Pierre Beyssac <pb@fasterix.freenix.org> To: Matthew Dillon <dillon@apollo.backplane.com>, Sean Eric Fagan <sef@kithrup.com> Cc: current@FreeBSD.ORG Subject: Re: PATCH for testing Message-ID: <19991116001106.A6107@fasterix.frmug.org> In-Reply-To: <199911152227.OAA45627@apollo.backplane.com>; from Matthew Dillon on Mon, Nov 15, 1999 at 02:27:10PM -0800 References: <199911152213.OAA20176@kithrup.com> <199911152227.OAA45627@apollo.backplane.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Nov 15, 1999 at 02:27:10PM -0800, Matthew Dillon wrote:
> And, also, we need to get rid of the 'e' option to ps entirely. It's a
> major security hole.
Not more so than option 'u', or even 'a', if you ask me.
It's common knowledge under Unix that you shouldn't put anything
sensitive in the command line or the environment. When there's any
risk, the best option is to remove 'ps' alltogether, IMHO.
--
Pierre Beyssac pb@fasterix.frmug.org pb@fasterix.freenix.org
BSD : il y a moins bien, mais c'est coté en bourse
Free domains: http://www.eu.org/ or mail dns-manager@EU.org
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19991116001106.A6107>