HPE Community
Operating System - HP-UX
1753776 Members
7316 Online
108799 Solutions
New Discussion юеВ

Newbie question on "ps"

 
SOLVED
Go to solution
John Dominic T. Binuya
Advisor

тАО02-15-2010 11:14 AM

тАО02-15-2010 11:14 AM

Newbie question on "ps"

I would just like to know what the meaning of [priv] in the last column of a "ps" output means:

# ps -ef | grep priv
root 17583 1 0 Feb 13 ? 0:00 sshd: sysops [priv]
sometimes I get [net]

sshd 19746 19745 0 16:07:03 ? 0:00 sshd: jay_q [net].

thanks for the help.
0 Kudos
3 REPLIES 3
Olivier Masse
Honored Contributor

тАО02-15-2010 12:25 PM

тАО02-15-2010 12:25 PM

Solution

Re: Newbie question on "ps"

Usually this indicates privilege separation, which is a feature of modern security-related software. However, using [priv] is not a defined "standard", just good practice, and the ps command has nothing to do with this naming; the process simply asks the OS to be named that way.

My explanation might not be 100% accurate but from what I know, the "[priv]" process is a separate process that handles privileged instructions, in this case on behalf of user "sysops". This reduces the chances of having security-related bugs in the software as the codebase of the privileged process will be smaller. For example, with OpenSSH the privileged process handles all login activity while work that doesn't require any privilege is executed in a process belonging to the login user.

Olivier.
0 Kudos
Dennis Handly
Acclaimed Contributor

тАО02-15-2010 03:51 PM

тАО02-15-2010 03:51 PM

Re: Newbie question on "ps"

>Olivier: the process simply asks the OS to be named that way.

Right, nothing to do with ps(1). ps(1) just prints out argv, so it is sshd that is setting that string. Similarly with oracle. It is trying to give a distinct name for the many processes.
0 Kudos
John Dominic T. Binuya
Advisor

тАО02-16-2010 07:16 PM

тАО02-16-2010 07:16 PM

Re: Newbie question on "ps"

Thank you very much for clearing this up for me.
0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.