January 5, 2011

Privacy concerns about how processes are displayed

Any user can see all processes running on a Linux Computer and if he uses

ps -Af

even it's command line parameters are shown. Most times there is not much sensible information there, but there might be.
If we open a link from a mail someone has sent to us, it's link address might be visible to everyone in the system. Sometimes we might feel convenient to embed a password in the command line for some automatic process. You shouldn't do that!!, but many programs let you do so and some users might not be aware of it's risks.
I might be wrong, but I don't see a reason why this information should be exposed to all users in a system instead of making it available only for root and the owner of the process. :unsure:

Click Here!