mirror of
https://git.hardenedbsd.org/hardenedbsd/HardenedBSD.git
synced 2024-11-15 23:05:49 +01:00
821079e9be
Turn off setgid-kmem for /bin/ps, it's now quite functional without it. ps no longer needs /dev/*mem or /proc. (It will still use some /proc files if they are available for -e, but it's not required, so it'll happily run in a jail or chroot). The proc stats are now part of eproc (obtained via sysctl) and no longer needs to beat up the u-page reading code and the problems with that. This also has the side effect of disabling 'ps -e' for normal users *EXCEPT* when looking at their own processes. ie: they can see environments in processes with their uid, enforced by the ownership of /proc/*/mem. Root can still see them all, as it can open all /proc/*/mem.
19 lines
393 B
Makefile
19 lines
393 B
Makefile
# $FreeBSD$
|
|
# @(#)Makefile 8.1 (Berkeley) 6/2/93
|
|
|
|
PROG= ps
|
|
SRCS= fmt.c keyword.c nlist.c print.c ps.c
|
|
#
|
|
# To support "lazy" ps for non root/wheel users
|
|
# add -DLAZY_PS to the cflags. This helps
|
|
# keep ps from being an unnecessary load
|
|
# on large systems.
|
|
#
|
|
CFLAGS+=-I${.CURDIR}/../../sys -DLAZY_PS
|
|
DPADD= ${LIBM} ${LIBKVM}
|
|
LDADD= -lm -lkvm
|
|
#BINGRP= kmem
|
|
#BINMODE=2555
|
|
|
|
.include <bsd.prog.mk>
|