home *** CD-ROM | disk | FTP | other *** search
- Path: sparky!uunet!cs.utexas.edu!sun-barr!olivea!news.bbn.com!mips2!cass.ma02.bull.com!silverio
- From: silverio@cass.ma02.bull.com (Brian Silverio)
- Newsgroups: bull.sys.aix,comp.unix.aix
- Subject: Re: Changing name associated with a process
- Message-ID: <1992Jul22.234401.3114@cass.ma02.bull.com>
- Date: 22 Jul 92 23:44:01 GMT
- References: <mwarren.711724488@rws1> <mwarren.711816903@rws1> <kelvin.711819412@thed.uk22.bull.com>
- Organization: Bull World Wide Information Systems Inc.
- Lines: 17
-
- kelvin@thed.uk22.bull.com (Kelvin J. Hill) writes:
-
-
- >Frankly, so am I! On the DPX2/500 it does not update the global name but only
- >the programs private copy of the name pointer. I suspect this is a blatant
- >violation of the systems security.... Does anyone elses 'ps' see the new
- >name value or is it private to this process group?
-
- Quite the contrary. This should improve security. You can now hide
- the details of the command and its arguments from the world at large.
- One of the "known security problems" is with programs like Oracle that allow
- a password to be entered on the command line. The password is then visible
- to everyone on the machine.
- This technique, properly used, can correct the problem.
- --
- ____________________________________________________
- Brian D. Silverio b.silverio@bull.com
-