On Fri, Mar 17, 2006 at 10:31:43AM -0800, Ashok Nair wrote:
> Would it be possible for a regular user to mdb a owned process and
> examine all the data structures associated with the process(like
> proc_t etc)?

It's not clear what you are asking for, here.  A regular user can use
'mdb -p pid'  to attach to a particular process, which uses the information
and control interfaces described in proc(4).  Those interfaces are the only
readily available data to a non-root user.

But you asked about examining a proc_t, which is a kernel datastructure
which can only be accessed using 'mdb -k'.  There is no way to only grant
access to a subset of kernel memory;  either you can open /dev/kmem for
reading, or you can't.

Does that help?

Cheers,
- jonathan

> An example, will be  helpful.  Are there any restrictions about what a 
> regular user can inspect?
> 
> Thanks
> Ashok
> This message posted from opensolaris.org
> _______________________________________________
> mdb-discuss mailing list
> mdb-discuss at opensolaris.org

-- 
Jonathan Adams, Solaris Kernel Development

Reply via email to