> On Tue, 29 Mar 2005, H. S. wrote:
>
>> My "USERNAME" account doesn't have access to /sbin/dmesg, but I uploaded
>> a /sbin/dmesg from a 5.2.1-RELEASE to a 5.3-STABLE box, and then I could
>> have access to this system information. The same goes for systat ,
>> vmstat, and all these commands that
On Tue, 29 Mar 2005, H. S. wrote:
> My "USERNAME" account doesn't have access to /sbin/dmesg, but I uploaded
> a /sbin/dmesg from a 5.2.1-RELEASE to a 5.3-STABLE box, and then I could
> have access to this system information. The same goes for systat ,
> vmstat, and all these commands that (most p
> On Wed, 2005-Mar-30 11:06:53 -0600, H. S. wrote:
>>As I stated previously, I'm not much of a C programmer, but I can do some
>>coding. I've been thinking into changing the core of the system a bit to
>>return errors if some information is accessed by a normal user.
>
> Wouldn't making /sbin and /
On Wed, 30 Mar 2005 11:06:53 -0600 (CST), H. S.
<[EMAIL PROTECTED]> wrote:
> As I stated previously, I'm not much of a C programmer, but I can do some
> coding. I've been thinking into changing the core of the system a bit to
> return errors if some information is accessed by a normal user. I'd lik
On Wed, 2005-Mar-30 11:06:53 -0600, H. S. wrote:
>As I stated previously, I'm not much of a C programmer, but I can do some
>coding. I've been thinking into changing the core of the system a bit to
>return errors if some information is accessed by a normal user.
Wouldn't making /sbin and /usr/sbin
Thanks for all the replies, I'm considering mounting /home noexec, and
installing the most common stuff system-wide, so it can be executed by any
user.
As I stated previously, I'm not much of a C programmer, but I can do some
coding. I've been thinking into changing the core of the system a bit to
no patch for human stupidity"
Ivan Voras dijo:
> In the thread ("A few thoughts..") some problems were mentioned
> (disallowing users to start certain binaries) and some solutions (like
> putting the /home tree on a dedicated partition and using mount options).
> I'm intere
In <[EMAIL PROTECTED]>, H. S. <[EMAIL PROTECTED]> typed:
> My "USERNAME" account doesn't have access to /sbin/dmesg, but I uploaded a
> /sbin/dmesg from a 5.2.1-RELEASE to a 5.3-STABLE box, and then I could
> have access to this system information. The same goes for systat , vmstat,
> and all these
In the thread ("A few thoughts..") some problems were mentioned
(disallowing users to start certain binaries) and some solutions (like
putting the /home tree on a dedicated partition and using mount options).
I'm interested could this be done with MAC, and how? There's not
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Tue, 29 Mar 2005, H. S. wrote:
If you don't want users to run random binaries put /home and /tmp on
their own partitions and mount them noexec. Also note that users can
still read that info by accessing /var/log/messages and /var/run/
dmesg.boot
I do
> On Tue, Mar 29, 2005 at 03:12:25PM -0600, H. S. wrote:
>> This could be compared to what was done in FreeBSD lately, I remember in
>> 4.7 (and probably later, up to 4.10 I think) a user could see the full
>> connection lists (even connections from other users), only later the
>> kern.ps_showallpr
On Tue, Mar 29, 2005 at 03:12:25PM -0600, H. S. wrote:
> This could be compared to what was done in FreeBSD lately, I remember in
> 4.7 (and probably later, up to 4.10 I think) a user could see the full
> connection lists (even connections from other users), only later the
> kern.ps_showallprocs/se
> On Tue, 29 Mar 2005 13:19:06 -0600 (CST)
> "H. S." <[EMAIL PROTECTED]> wrote:
>
>
>> [EMAIL PROTECTED]:/home/USERNAME]$ ./dmesg
>> Copyright (c) 1992-2004 The FreeBSD Project.
>> Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994
> [...]
>> real memory = 83886080 (80 MB)
>>
On Tue, 29 Mar 2005 13:19:06 -0600 (CST)
"H. S." <[EMAIL PROTECTED]> wrote:
> [EMAIL PROTECTED]:/home/USERNAME]$ ./dmesg
> Copyright (c) 1992-2004 The FreeBSD Project.
> Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994
[...]
> real memory = 83886080 (80 MB)
> avail memory
Hey all,
I've been using FreeBSD for a long time, it's my favorite OS and I use it
on all my servers and most workstations. However, due to the nature of
some of the servers, I've always wondered about something, tho. It is
related to something deep in the OS. Let me try to explain.
For example,
15 matches
Mail list logo
