grsecurity forums

Hi,

I am not able to view other users' processes if I login as a non-root user. I found that grsecurity had enabled it. I would like to know the exact directive that is causing this and is there any way to disable it without recompiling the kernel.

Any help would be greatly appreciated.

Code: Select all

CONFIG_GRKERNSEC_PROC:                                                 
                                                                       
If you say Y here, the permissions of the /proc filesystem             
will be altered to enhance system security and privacy.  You MUST     
choose either a user only restriction or a user and group restriction.
Depending upon the option you choose, you can either restrict users to
see only the processes they themselves run, or choose a group that can
view all processes and files normally restricted to root if you choose
the "restrict to user only" option.  NOTE: If you're running identd as
a non-root user, you will have to run it as the group you specify here.
                                                                       
Symbol: GRKERNSEC_PROC [=y]                                           
Prompt: Proc restrictions                                             
  Defined at grsecurity/Kconfig:319                                   
  Depends on: GRKERNSEC                                               
  Location:                                                           
    -> Security options                                               
      -> Grsecurity                                                   
        -> Grsecurity (GRKERNSEC [=y])                                 
          -> Filesystem Protections                                   
  Selected by: GRKERNSEC_MEDIUM && <choice> || GRKERNSEC_HIGH && <choice>

I'm not sure if it can be disabled w/o a recompile; but I don't believe it can.

Create group procview with gid 1001 (read own kerlnel`s config) and add user to the group. It is enough