From mboxrd@z Thu Jan 1 00:00:00 1970 From: "Michael Kerrisk (man-pages)" Subject: Re: [PATCH] proc.5: tfix Date: Wed, 13 May 2015 14:05:57 +0200 Message-ID: <55533E25.5000205@gmail.com> References: <55531E73.2020405@redhat.com> Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit Return-path: In-Reply-To: <55531E73.2020405-H+wXaHxf7aLQT0dZR+AlfA@public.gmane.org> Sender: linux-man-owner-u79uwXL29TY76Z2rM5mHXA@public.gmane.org To: myllynen-H+wXaHxf7aLQT0dZR+AlfA@public.gmane.org Cc: mtk.manpages-Re5JQEeQqe8AvxtiuMwx3w@public.gmane.org, linux-man List-Id: linux-man@vger.kernel.org Thanks, Marko. Applied. Cheers, Michael On 05/13/2015 11:50 AM, Marko Myllynen wrote: > > --- > man5/proc.5 | 6 +++--- > 1 files changed, 3 insertions(+), 3 deletions(-) > > diff --git a/man5/proc.5 b/man5/proc.5 > index d0a7629..c3996eb 100644 > --- a/man5/proc.5 > +++ b/man5/proc.5 > @@ -93,15 +93,15 @@ directories but their own (the > .IR /proc/[pid] > directories themselves remain visible). > Sensitive files such as > -.IR /proc/[pid]cmdline > +.IR /proc/[pid]/cmdline > and > -.IR /proc/[pid]status > +.IR /proc/[pid]/status > are now protected against other users. > This makes it impossible to learn whether any user is running a > specific program > (so long as the program doesn't otherwise reveal itself by its behavior). > .\" As an additional bonus, since > -.\" .IR /proc/[pid]cmdline > +.\" .IR /proc/[pid]/cmdline > .\" is unaccessible for other users, > .\" poorly written programs passing sensitive information via > .\" program arguments are now protected against local eavesdroppers. > -- Michael Kerrisk Linux man-pages maintainer; http://www.kernel.org/doc/man-pages/ Linux/UNIX System Programming Training: http://man7.org/training/ -- To unsubscribe from this list: send the line "unsubscribe linux-man" in the body of a message to majordomo-u79uwXL29TY76Z2rM5mHXA@public.gmane.org More majordomo info at http://vger.kernel.org/majordomo-info.html