One of the security enhancements that Solaris 10 provides is the ability to restrict the output of the ps command so that users can only see processes that they own.
So to globally control if users are able to watch processes belonging to other users edit the /etc/security/policy.conf file and add the following entry:
PRIV_DEFAULT=basic,!proc_info
Now users will only be able to see processes that they own. Note however, that this obviously will not affect the root user.
If you are interested in Solaris privileges, you’ll find a good intro from Casper Dik’s Weblog.
Tags: Solaris