UID 1001
Posted: Wed Dec 12, 2007 12:57 amI'm a relative newcomer to using grsecurity, but, I've went ahead and installed Debian etch, patched the 2.6.23.9 (latest stable) kernel with the grsecurity-2.1.11-2.6.23.9-200712101800.patch (latest test patch), compiled and installed. All is golden.
I particularly noticed the feature which allowed users to not see any other processes other than the ones they own. However, I did also notice that the any account with the UID of 1001 seems to be exempt from these confinements. 1000 and 1002 and 1003 are all subject to this confinement, but not 1001. Perhaps this is default behavior and I'm simply a fool, or perhaps a glitch in the latest test patch, can anyone else help explain this?
I'm not looking for a fix per se, just was curious as to whether or not this was a bug.
Anyway, cheers on this great patchset. I look forward to putting it to good use.
I particularly noticed the feature which allowed users to not see any other processes other than the ones they own. However, I did also notice that the any account with the UID of 1001 seems to be exempt from these confinements. 1000 and 1002 and 1003 are all subject to this confinement, but not 1001. Perhaps this is default behavior and I'm simply a fool, or perhaps a glitch in the latest test patch, can anyone else help explain this?
I'm not looking for a fix per se, just was curious as to whether or not this was a bug.
Anyway, cheers on this great patchset. I look forward to putting it to good use.