Date: Thu, 02 May 2002 12:28:41 -0500 From: "default013 subscriptions" <default013subscriptions@hotmail.com> To: jeff@boris.st.hmc.edu Cc: freebsd-questions@freebsd.org Subject: Re: Restricting PS Use Message-ID: <F160k71GHCLHcmSvOha00005fb3@hotmail.com>
next in thread | raw e-mail | index | archive | help
I wish I could do the sysctl thing, but I am using FreeBSD 4.1 ... Apparently there is no setting for that in my distribution. I will give the other way a shot, but... am I right in assuming that I won't be able to use the sysctl answer? ... I wonder if I could just upgrade sysctl... Thanks >From: Jeff <jeff@boris.st.hmc.edu> >To: "Brian T.Schellenberger" <bts@babbleon.org> >CC: default <default013subscriptions@hotmail.com>, FreeBSD-Questions ><freebsd-questions@FreeBSD.ORG> >Subject: Re: Restricting PS Use >Date: Thu, 2 May 2002 10:16:11 -0700 (PDT) >MIME-Version: 1.0 >Received: from [134.173.63.11] by hotmail.com (3.2) with ESMTP id >MHotMailBE9ABF4E00A24136E85186AD3F0B0A870; Thu, 02 May 2002 10:15:58 -0700 >Received: from localhost (jeff@localhost)by boris.st.hmc.edu >(8.11.6/8.11.6) with ESMTP id g42HGBL21473;Thu, 2 May 2002 10:16:12 -0700 >(PDT)(envelope-from jeff@boris.st.hmc.edu) >From jeff@boris.st.hmc.edu Thu, 02 May 2002 10:16:43 -0700 >In-Reply-To: <20020502171102.EC819BB29@i8k.babbleon.org> >Message-ID: <20020502101331.O20800-100000@boris.st.hmc.edu> > > > >On Thu, 2 May 2002, Brian T.Schellenberger wrote: > > > On Thursday 02 May 2002 12:58 pm, default wrote: > > | Hello, > > | > > | I have been trying to get this working for a long time to no avail, >but... > > | > > | Basically I need to restrict the PS command so that normal users are >only > > | able to see their own processes... > > | > > | I would appreciate any suggestion on how to do this... > > | > > > > - create a "ps" userid > > - restrict ps so that only "PS" can execute it (root will be able to >anyay). > > - create a new ps command, probably just as a perl script, in >/usr/local/bin > > - make the perl script suid to the new "ps" id. > > - Have the perl script execute ps and filter out the records you don't >want. > > > > You can now restrict ps in any way you desire. > > > > > >Or, check sysctl kern.ps_showallprocs (more specifically, set it to >zero) ... man 1 ps would have told you the same thing. > >- Jeff > >============== >Jeff Jirsa >HMC Unix Admin >jjirsa@hmc.edu >============== > _________________________________________________________________ MSN Photos is the easiest way to share and print your photos: http://photos.msn.com/support/worldwide.aspx To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?F160k71GHCLHcmSvOha00005fb3>