Date: Fri, 26 Jan 2007 09:59:17 +0300 From: "Andrey V. Elsukov" <bu7cher@yandex.ru> To: freebsd-hackers@freebsd.org Subject: Re: how to deny reading of several sysctls (for a set of uids, f.e.) Message-ID: <45B9A6C5.7000400@yandex.ru> In-Reply-To: <082f01c73ee3$c6b3f810$970da8c0@jam.zenon.net> References: <082f01c73ee3$c6b3f810$970da8c0@jam.zenon.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Andrew N. Below wrote: > I also thought about passing control variable from libc > to kernel, but it seems to be bad idea. > > Any other ways? As an idea - maybe you can implement this feature as MAC module? Looks for a mac_check_system_sysctl function. -- WBR, Andrey V. Elsukov
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?45B9A6C5.7000400>