Hi,
I am not able to view other users' processes if I login as a non-root user. I found that grsecurity had enabled it. I would like to know the exact directive that is causing this and is there any way to disable it without recompiling the kernel.
Any help would be greatly appreciated.
not able to view others processes
3 posts
• Page 1 of 1
not able to view others processes
by akhthar » Thu Jul 28, 2005 6:27 pm
- akhthar
- Posts: 1
- Joined: Thu Jul 28, 2005 6:23 pm
by Hannibal » Tue Aug 02, 2005 7:56 am
- Code: Select all
CONFIG_GRKERNSEC_PROC:
If you say Y here, the permissions of the /proc filesystem
will be altered to enhance system security and privacy. You MUST
choose either a user only restriction or a user and group restriction.
Depending upon the option you choose, you can either restrict users to
see only the processes they themselves run, or choose a group that can
view all processes and files normally restricted to root if you choose
the "restrict to user only" option. NOTE: If you're running identd as
a non-root user, you will have to run it as the group you specify here.
Symbol: GRKERNSEC_PROC [=y]
Prompt: Proc restrictions
Defined at grsecurity/Kconfig:319
Depends on: GRKERNSEC
Location:
-> Security options
-> Grsecurity
-> Grsecurity (GRKERNSEC [=y])
-> Filesystem Protections
Selected by: GRKERNSEC_MEDIUM && <choice> || GRKERNSEC_HIGH && <choice>
I'm not sure if it can be disabled w/o a recompile; but I don't believe it can.
- Hannibal
- Posts: 6
- Joined: Sun May 02, 2004 11:41 am
3 posts
• Page 1 of 1