Return to BSD News archive
Path: sserve!newshost.anu.edu.au!munnari.oz.au!network.ucsd.edu!news.acns.nwu.edu!zaphod.mps.ohio-state.edu!usc!sol.ctr.columbia.edu!ira.uka.de!Germany.EU.net!news.dfn.de!mailgzrz.TU-Berlin.DE!cs.tu-berlin.de!klier From: klier@cs.tu-berlin.de (Jan Klier) Newsgroups: comp.os.386bsd.development Subject: SIGKILL and kill Date: 17 Apr 1993 05:14:02 GMT Organization: Technical University of Berlin, Germany Lines: 32 Message-ID: <1qo3mq$d4b@news.cs.tu-berlin.de> NNTP-Posting-Host: troll.cs.tu-berlin.de Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Summary: suggestion: restricting SIGKILL to root in the kill program Keywords: SIGNALS SECURITY Hi 386bsd community, I don't know if this is the right place to post such things, so if no please appologize. From my experience as administrator and user of Unix systems I have a suggestion for a little change which could increase the system security for the user themselves. I experienced that many users often use the command 'kill -9 pid' to kill a process instead of the simple version 'kill pid'. But if the SIGKILL signal is used to terminate a process the user will get rid of, the process itself has no chance to catch that and cleanup it's own data structure, flushing some buffers, updating databases etc. Most often the TERM signal will do the same job, users just don't know about the difference between KILL and TERM and risk (unconciously) loosing data. My idea is now (and I post it here because it could be tested experimentally in 386bsd) to modify the kill-programm in order to restrict the SIGKILL signal to the superuser. This will force users to use the safe TERM-signal when the terminate processes and still leaves the door open for really hung situation where a SIGKILL is necessary. Any comments? jan -- ******************************************************************************* Jan Klier Berlin, Germany e-mail: klier.cs.tu-berlin.de cis : 100022,1700 | jklier.ipk.fhg.de | 100022.1700@compuserve.com