I'm probably jumping the gun, but what the heck, this is -current.

Turn off setgid-kmem for /bin/ps, it's now quite functional without it. ps no longer needs /dev/*mem or /proc. (It will still use some /proc files if they are available for -e, but it's not required, so it'll happily run in a jail or chroot). The proc stats are now part of eproc (obtained via sysctl) and no longer needs to beat up the u-page reading code and the problems with that. This also has the side effect of disabling 'ps -e' for normal users *EXCEPT* when looking at their own processes. ie: they can see environments in processes with their uid, enforced by the ownership of /proc/*/mem. Root can still see them all, as it can open all /proc/*/mem.
1999-11-17 13:37:30 +00:00 · 1999-11-17 13:37:30 +00:00 · 821079e9be
commit 821079e9be
parent 602a69d61e
1 changed files with 2 additions and 2 deletions
--- a/bin/ps/Makefile
+++ b/bin/ps/Makefile
@ -12,7 +12,7 @@ SRCS=	fmt.c keyword.c nlist.c print.c ps.c
 CFLAGS+=-I${.CURDIR}/../../sys -DLAZY_PS
 DPADD=	${LIBM} ${LIBKVM}
 LDADD=	-lm -lkvm
-BINGRP=	kmem
-BINMODE=2555
+#BINGRP=	kmem
+#BINMODE=2555

 .include <bsd.prog.mk>