Dan Nelson wrote:
> In the last episode (Nov 23), Lyndon Nerenberg said:
> > After you verify that this change isn't going to break things that
> > assume they can see the *argv list via ps(1). I.e. lightning bolts
> > that do 'kill -MUMBLE `ps -ax|grep foo`'. Which may not be elegant
> > style, but sometimes is the only workable solution.
>
> That won't be affected, because anyone that has kill rights to the
> process will also see the full processname. Now that I think about it,
> I can't come up with a case where this is really bad. If you're doing
> ps'es with intent to kill arbitrary processes (in the name of debugging
> or whatever), you're probably already root.
It's this bogus change to kern/kern_proc.c. If you back this out it should
work as expected.
@@ -631,7 +633,7 @@
if (!p)
return (0);
- if (!PRISON_CHECK(curproc, p))
+ if (p_trespass(curproc, p))
return (0);
if (req->newptr && curproc != p)
Cheers,
-Peter
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-current" in the body of the message