我不希望其他用户在 ps aux 中看到我的进程。我有根。这是Debian。如何使用grsec?

我不希望其他用户在 ps aux 中看到我的进程。我有根。这是Debian。如何使用grsec?

我安装了“linux-patch-grsecurity2”,它有某种界面。

~$ sudo gradm2
gradm 2.1.14
grsecurity administration program

Usage: gradm [option] ...

Examples:
        gradm -P
        gradm -F -L /etc/grsec/learning.logs -O /etc/grsec/policy
Options:
        -E, --enable    Enable the grsecurity RBAC system
        -D, --disable   Disable the grsecurity RBAC system
        -C, --check     Check RBAC policy for errors
        -S, --status    Check status of RBAC system
        -F, --fulllearn Enable full system learning
        -P [rolename], --passwd
                        Create password for RBAC administration
                        or a special role
        -R, --reload    Reload the RBAC system while in admin mode
        -L <filename>, --learn
                        Specify the pathname for learning logs
        -O <filename>, --output
                        Specify where to place policies generated from
                        learning mode
        -M <filename|uid>, --modsegv
                        Remove a ban on a specific file or UID
        -a <rolename> , --auth
                        Authenticates to a special role that requires auth
        -u, --unauth    Remove yourself from your current special role
        -n <rolename> , --noauth
                        Transitions to a special role that doesn't
                        require authentication
        -p <rolename> , --pamauth
                        Authenticates to a special role through PAM
        -V, --verbose   Display verbose policy statistics when enabling system
        -h, --help      Display this help
        -v, --version   Display version information

我没有成功找到任何有关如何使用它来限制用户的“ps aux”列表的文档?

答案1

您需要设置正确的内核配置选项。这里是有关部分文档。我认为你不能从 gradm 策略文件中做到这一点。

相关内容