Re: [dev] [ii] exposed password on process monitoring

From: Ivan Kanakarakis <ivan.kanak_AT_gmail.com>
Date: Sat, 21 Apr 2012 03:51:33 +0300

On 21 April 2012 03:48, Ivan Kanakarakis <ivan.kanak_AT_gmail.com> wrote:

>
>
> On 21 April 2012 03:25, Kurt H Maier <khm-suckless_AT_intma.in> wrote:
>
>> On Sat, Apr 21, 2012 at 02:52:17AM +0300, Ivan Kanakarakis wrote:
>> > dah
>> >
>> > $ ps e -C ii | grep -o "IIPASS=[^ ]*"
>> > IIPASS="foobar"
>>
>> I am mildly convinced that other users cannot see env data with ps -e.
>>
>
> a test user here (Linux) can see the
> processes but _not_ the environment
>
> $ ps --version
> procps version 3.2.8
>
> also the man 1p ps says:
>
> At one time a format was included to display the
> environment array of the process. This was deleted
> because there is no portable way to display it.
>
>
>
>> I am also vaguely determined that on linux this information comes from
>> /proc/$PID/environ and is thus controlled by that file's mode.
>>
>>
oh, forgot to say, environ is 0400 readable and owned
only by the user that started the process


> If not, we should write a better ps.
>>
>>
>>
>
>
> --
> *Ivan c00kiemon5ter V Kanakarakis* >:3
>
>


-- 
*Ivan c00kiemon5ter V Kanakarakis*  >:3
Received on Sat Apr 21 2012 - 02:51:33 CEST

This archive was generated by hypermail 2.3.0 : Sat Apr 21 2012 - 03:00:22 CEST