From owner-freebsd-stable@FreeBSD.ORG Mon Jun 27 08:45:43 2005 Return-Path: X-Original-To: freebsd-stable@freebsd.org Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9BBFD16A41C; Mon, 27 Jun 2005 08:45:43 +0000 (GMT) (envelope-from gabor.kovesdan@t-hosting.hu) Received: from viefep17-int.chello.at (viefep17-int.chello.at [213.46.255.23]) by mx1.FreeBSD.org (Postfix) with ESMTP id A6B3F43D49; Mon, 27 Jun 2005 08:45:42 +0000 (GMT) (envelope-from gabor.kovesdan@t-hosting.hu) Received: from [80.98.156.20] by viefep17-int.chello.at (InterMail vM.6.01.04.04 201-2131-118-104-20050224) with ESMTP id <20050627084540.LSJS19956.viefep17-int.chello.at@[80.98.156.20]>; Mon, 27 Jun 2005 10:45:40 +0200 Message-ID: <42BFBCAF.9040001@t-hosting.hu> Date: Mon, 27 Jun 2005 10:45:35 +0200 From: =?ISO-8859-1?Q?K=F6vesd=E1n_G=E1bor?= User-Agent: Mozilla Thunderbird 1.0.2 (Windows/20050317) X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-questions@freebsd.org, freebsd-stable@freebsd.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit Cc: Subject: bsdextended mac module question X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 27 Jun 2005 08:45:43 -0000 Hello, I try to make a bsdextended mac policy and when I add the following rule, I can't login with a simple user: ugidfw add subject not uid root object uid root mode rx This rule is for protecting root's files from others in any case. And I've got the following message: /libexec/ld-els.so.1: Cannot fstat "/lib/libedit.so.4" Jun 27 10:36:25 localhost login: _secure_path: cannot stat /etc/login.conf: Permission denied What's wrong? Btw, could somebody tell what the a mode means in bsdextended rules? Thanks, Gábor Kövesdán