Re: Security question: sqlplus and the ps cmd on Unix

From: Tony Jambu <aaj_at_phantom.telecom.com.au>
Date: 1995/04/03
Message-ID: <3lnves$nih_at_newsserver.trl.OZ.AU>#1/1

In article <3lhqma$l9i_at_mother.usf.edu>, rife_at_aarlo.moffitt.usf.edu (Mike Rife) writes:
.
.
> What we did on SCO Unix was to remove the 'mem' Unix priviledge for
> the users' Unix accounts. So now when they do the 'ps' command

Do you mean you change the permission on /dev/mem? Dont forget that 'ps' has a suid bit on it. So what are you doing, removing the SUID bit or the group 'read' permission? It may be different on SCO UNIX.

> they only get information about their own account's processes. We
> made this the default for the creation of Unix accounts on our system.
> We enable it for developers.

-- 
 _____       ________ / ___ |Tony Jambu, Database Consultant
  /_  _        /_ __ /      |Wizard Consulting,Aust (ACN 065934778)
 /(_)/ )(_/ \_/(///(/_)/_(  |CIS: 100250.2003_at_compuserve.com FAX: +61-3-4163559
 \_______/                  |EMAIL:TJambu_at_wizard.com.au PHONE: +61-3-4122905

Received on Mon Apr 03 1995 - 00:00:00 CEST

This message: [ Message body ]
Next message: Sue Kudenchak: "Re: Security question: sqlplus and the ps cmd on Unix"
Previous message: Tony Jambu: "Re: Security question: sqlplus and the ps cmd on Unix"
Maybe in reply to: Dave Mausner: "Re: Security question: sqlplus and the ps cmd on Unix"
Next in thread: Sue Kudenchak: "Re: Security question: sqlplus and the ps cmd on Unix"
Reply: Sue Kudenchak: "Re: Security question: sqlplus and the ps cmd on Unix"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message