https://community.hpe.com/t5/operating-system-hp-ux/ps-ef/m-p/2491446#M19558 So many ways to answer this...here's just one:<BR /><BR />You could set up a small script in their .profile that runs as soon as they login and gives them options to choose what you want to allow them do to...within the script when they select the ps -ef option it would grep and only extract their jobs...<BR /><BR />/rcw Thu, 08 Feb 2001 16:42:56 GMT Rita C Workman 2001-02-08T16:42:56Z https://community.hpe.com/t5/operating-system-hp-ux/ps-ef/m-p/2491445#M19557 What change can I make on a HP-9000 sever running OS 10.20 that will only allow users to see their own process when doing a ps -ef command. I do not wish general users to have access to see all processes system or other users.<BR /><BR />R- Thu, 08 Feb 2001 16:22:55 GMT https://community.hpe.com/t5/operating-system-hp-ux/ps-ef/m-p/2491445#M19557 richard barr 2001-02-08T16:22:55Z https://community.hpe.com/t5/operating-system-hp-ux/ps-ef/m-p/2491446#M19558 So many ways to answer this...here's just one:<BR /><BR />You could set up a small script in their .profile that runs as soon as they login and gives them options to choose what you want to allow them do to...within the script when they select the ps -ef option it would grep and only extract their jobs...<BR /><BR />/rcw Thu, 08 Feb 2001 16:42:56 GMT https://community.hpe.com/t5/operating-system-hp-ux/ps-ef/m-p/2491446#M19558 Rita C Workman 2001-02-08T16:42:56Z https://community.hpe.com/t5/operating-system-hp-ux/ps-ef/m-p/2491447#M19559 Richard:<BR /><BR />Here's one way [if you can take (and keep)control of the user's profile].<BR /><BR />Add to the user's profile at the end, the following:<BR /><BR /># function ps<BR /># {<BR /># if [ $# -eq 0 ]<BR /># then<BR /># command ps<BR /># else<BR /># command ps $@|grep $LOGNAME<BR /># fi<BR /># }<BR /><BR />This will allow the user to do the 'ps' command with or without options but will show only processes associated with him/her.<BR /><BR />...JRF... Thu, 08 Feb 2001 22:10:00 GMT https://community.hpe.com/t5/operating-system-hp-ux/ps-ef/m-p/2491447#M19559 James R. Ferguson 2001-02-08T22:10:00Z https://community.hpe.com/t5/operating-system-hp-ux/ps-ef/m-p/2491448#M19560 Hello Richard,<BR /><BR />just move the "ps" codefile aside to something like<BR />"/usr/bin/ps2" and change group to a new group <BR />like "psgrp". Then change permissions to make it<BR />executable only for that group, i.e. "chmod 710 ps2".<BR />Now create a shell-script in the place of the old "ps",<BR />permissions "2551", i.e. SGID and owned by group<BR />"psgrp" and a content like that:<BR /><BR />#!/usr/bin/sh<BR />usage() {<BR /> echo "illegal parameter: -u|-e are not allowed" &gt;&amp;2<BR /> exit 1;<BR />}<BR />args=""<BR />while [ $# -gt 0 ]; do<BR /> case "$1" in<BR /> -*e*| -*u*) usage ;;<BR /> -*| *) args="$args $1" ;;<BR /> esac<BR /> shift<BR />done<BR />/usr/bin/ps2 -u $(logname) $args<BR /># end of script<BR /><BR />It is not bullet proof but should give you an idea ;-)<BR />The only "dangerous" options would be "-e" (each<BR />process) and "-u username", the rest is ok. And call<BR />it with "-u $(logname)" to make shure your user is<BR />able to see his/her own processes in different sessions!<BR /><BR />HTH,<BR /> Wodisch Sat, 10 Feb 2001 21:23:50 GMT https://community.hpe.com/t5/operating-system-hp-ux/ps-ef/m-p/2491448#M19560 Wodisch 2001-02-10T21:23:50Z