![]() 2Īs for mode 1, but in addition the /proc/ directories belonging to other users become invisible. This makes it impossible to learn whether any user is running a specific program (so long as the program doesn't otherwise reveal itself by its behavior). Sensitive files such as /proc//cmdline and /proc//status are now protected against other users. Users may not access files and subdirectories inside any /proc/ directories but their own (the /proc/ directories themselves remain visible). ![]() This is the traditional behavior, and the default if this mount option is not specified. The argument, n, is one of the following values: 0Įverybody may access all /proc/ directories. This option controls who can access the information in /proc/ directories. The proc filesystem supports the following mount options: hidepid= n (since Linux 3.3) Most of the files in the proc filesystem are read-only, but some files are writable, allowing kernel variables to be changed. ![]() Typically, it is mounted automatically by the system, but it can also be mounted manually using a command such as: mount -t proc proc /proc ![]() The proc filesystem is a pseudo-filesystem which provides an interface to kernel data structures.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |