Granting non-root users access to ps listing

Discuss usability issues, general maintenance, and general support issues for a grsecurity-enabled system.

Granting non-root users access to ps listing

Postby jhmartin » Wed Mar 03, 2004 2:50 pm

I have a monitoring application that lives on a box w/grsecurity. I've got the ps listings restricted, but want to allow this application (which runs under its own non-root user) to be able to see the entire output of 'ps'. How can I do this?

Thanks,
-Jason Martin
jhmartin
 
Posts: 3
Joined: Wed Mar 03, 2004 2:48 pm

Postby miha » Wed Mar 03, 2004 4:24 pm

have you enabled special group in kernel config? if so, add the user to this group and user will be able to view all processes.

regards,
miha
 
Posts: 28
Joined: Sat Nov 30, 2002 9:09 am

Postby jhmartin » Wed Mar 03, 2004 5:52 pm

Which exact option is this? I've looked through the 'make menuconfig' options and am not seeing it.
jhmartin
 
Posts: 3
Joined: Wed Mar 03, 2004 2:48 pm

Postby jhmartin » Wed Mar 03, 2004 5:56 pm

Ahh, found it. I had to uncheck 'restrict to user only' first, then the special group option became available.

Thanks! :D
jhmartin
 
Posts: 3
Joined: Wed Mar 03, 2004 2:48 pm


Return to grsecurity support