| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 20 Nov 2007 18:53:03 +0100 From: Johannes Weiner <hannes-kernel@...urebad.de> To: Daniel Reichelt <mail@...mservices.de> Cc: linux-kernel@...r.kernel.org Subject: Re: Patch: Hide process info from other users/users not in my group Hi Daniel, On Tue, Nov 20, 2007 at 11:34:20AM +0100, Daniel Reichelt wrote: > # diff -Naur linux-2.6.23.8/fs/Kconfig linux-2.6.23.8-dhr/fs/Kconfig > --- linux-2.6.23.8/fs/Kconfig 2007-11-16 19:14:27.000000000 +0100 > +++ linux-2.6.23.8-dhr/fs/Kconfig 2007-11-20 11:33:18.000000000 +0100 > @@ -918,6 +918,17 @@ > help > Exports the dump image of crashed kernel in ELF format. > > +config PROC_SECURED_PID_DIRS > + bool "chmod /proc/<pid>-dirs to 550" > + depends on PROC_FS > + default n > + help > + chmod /proc/<pid>-dirs to 550 instead of 555 which provides a bit > + moreprivacy to users on your system as only the user's and the user's Missing space ^. I like the idea, but I would prefer to have three checkboxes for this option: * Normal modes (as in how they are right now) * User and group visible * Visible for the owning user only How about that? Hannes - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists