Re: [PATCH 3/7] procfs privacy: misc. entries

2005-04-18 Thread David Wagner
Lorenzo Hernández García-Hierro wrote: >El lun, 18-04-2005 a las 15:05 -0400, Dave Jones escribió: >> This is utterly absurd. You can find out anything thats in /proc/cpuinfo >> by calling cpuid instructions yourself. >> Please enlighten me as to what security gains we achieve >> by not allowing

Re: [PATCH 3/7] procfs privacy: misc. entries

2005-04-18 Thread Alan Curry
Dave Jones writes the following: > >On Mon, Apr 18, 2005 at 08:46:52PM +0200, Lorenzo Hernández García-Hierro >wrote: > > This patch changes the permissions of the following procfs entries to > > restrict non-root users from accessing them: [snip] > > - /proc/uptime ?!

Re: [PATCH 3/7] procfs privacy: misc. entries

2005-04-18 Thread Lorenzo Hernández García-Hierro
El lun, 18-04-2005 a las 15:05 -0400, Dave Jones escribió: > This is utterly absurd. You can find out anything thats in /proc/cpuinfo > by calling cpuid instructions yourself. Right, it doesn't make it worthy enough to represent any risk. > Please enlighten me as to what security gains we

Re: [PATCH 3/7] procfs privacy: misc. entries

2005-04-18 Thread Dave Jones
On Mon, Apr 18, 2005 at 08:46:52PM +0200, Lorenzo Hernández García-Hierro wrote: > This patch changes the permissions of the following procfs entries to > restrict non-root users from accessing them: > > - /proc/devices > - /proc/cmdline > - /proc/version > - /proc/uptime > -

[PATCH 3/7] procfs privacy: misc. entries

2005-04-18 Thread Lorenzo Hernández García-Hierro
This patch changes the permissions of the following procfs entries to restrict non-root users from accessing them: - /proc/devices - /proc/cmdline - /proc/version - /proc/uptime - /proc/cpuinfo - /proc/partitions - /proc/stat - /proc/interrupts - /proc/slabinfo - /proc/diskstats -

[PATCH 3/7] procfs privacy: misc. entries

2005-04-18 Thread Lorenzo Hernández García-Hierro
This patch changes the permissions of the following procfs entries to restrict non-root users from accessing them: - /proc/devices - /proc/cmdline - /proc/version - /proc/uptime - /proc/cpuinfo - /proc/partitions - /proc/stat - /proc/interrupts - /proc/slabinfo - /proc/diskstats -

Re: [PATCH 3/7] procfs privacy: misc. entries

2005-04-18 Thread Dave Jones
On Mon, Apr 18, 2005 at 08:46:52PM +0200, Lorenzo Hernández García-Hierro wrote: This patch changes the permissions of the following procfs entries to restrict non-root users from accessing them: - /proc/devices - /proc/cmdline - /proc/version - /proc/uptime - /proc/cpuinfo

Re: [PATCH 3/7] procfs privacy: misc. entries

2005-04-18 Thread Lorenzo Hernández García-Hierro
El lun, 18-04-2005 a las 15:05 -0400, Dave Jones escribió: This is utterly absurd. You can find out anything thats in /proc/cpuinfo by calling cpuid instructions yourself. Right, it doesn't make it worthy enough to represent any risk. Please enlighten me as to what security gains we achieve

Re: [PATCH 3/7] procfs privacy: misc. entries

2005-04-18 Thread Alan Curry
Dave Jones writes the following: On Mon, Apr 18, 2005 at 08:46:52PM +0200, Lorenzo Hernández García-Hierro wrote: This patch changes the permissions of the following procfs entries to restrict non-root users from accessing them: [snip] - /proc/uptime ?! [snip] -

Re: [PATCH 3/7] procfs privacy: misc. entries

2005-04-18 Thread David Wagner
Lorenzo Hernández García-Hierro wrote: El lun, 18-04-2005 a las 15:05 -0400, Dave Jones escribió: This is utterly absurd. You can find out anything thats in /proc/cpuinfo by calling cpuid instructions yourself. Please enlighten me as to what security gains we achieve by not allowing users to