On Tue, Jul 15, 2003 at 11:42:49PM -0700, Josh Brooks wrote: > > Hello, > > As I am sure many have noticed, a default installation of 5.1-RELEASE will > leave you with no procfs mounted at /proc, and no entry in /etc/fstab for > a procfs. > > Is this by design ?
Yes. Historically speaking procfs is a huge security risk. > Is it better to not run /proc on 5.x ? If you run a multi-user system with untrusted users, yes. > What are the consequences of running without a procfs on 5.x ? You can't use truss(1) to monitor syscalls, but ktrace still works fine. Kris
pgp00000.pgp
Description: PGP signature
