I am new to grsecurity,
how do i make an acl to prevent top (/usr/bin/top) from being executed?
In acl I have
/usr/bin/top {
/usr/bin/top r
}
but it still lets me run top.
how do i correct it so top is disabled?
Need help with simple ACL
3 posts
• Page 1 of 1
Need help with simple ACL
by abefroman » Sun Mar 28, 2004 4:51 pm
- abefroman
- Posts: 7
- Joined: Sun Mar 28, 2004 4:47 pm
by spender » Sun Mar 28, 2004 5:40 pm
Who do you want to not be able to run top? Are you aware that someone could copy a 'top' program to somewhere they can write and execute and it would work the same as the regular top? Have you enabled /proc restrictions to restrict the viewing of processes to only the user's own programs? If you want to disable the execution of top for all people using the default ACL (I assume you're running 1.9) just add:
/usr/bin/top h
to the default ACL (that's the / { blahblah } one)
-Brad
/usr/bin/top h
to the default ACL (that's the / { blahblah } one)
-Brad
- spender
- Posts: 2185
- Joined: Wed Feb 20, 2002 8:00 pm
3 posts
• Page 1 of 1