mirror of
https://git.hardenedbsd.org/hardenedbsd/HardenedBSD.git
synced 2024-11-15 23:05:49 +01:00
821079e9be
Turn off setgid-kmem for /bin/ps, it's now quite functional without it. ps no longer needs /dev/*mem or /proc. (It will still use some /proc files if they are available for -e, but it's not required, so it'll happily run in a jail or chroot). The proc stats are now part of eproc (obtained via sysctl) and no longer needs to beat up the u-page reading code and the problems with that. This also has the side effect of disabling 'ps -e' for normal users *EXCEPT* when looking at their own processes. ie: they can see environments in processes with their uid, enforced by the ownership of /proc/*/mem. Root can still see them all, as it can open all /proc/*/mem. |
||
---|---|---|
.. | ||
extern.h | ||
fmt.c | ||
keyword.c | ||
Makefile | ||
nlist.c | ||
print.c | ||
ps.1 | ||
ps.c | ||
ps.h |