Date: Wed, 3 Sep 2003 09:09:55 +0200 From: =?iso-8859-2?Q?Jaros=B3aw_Nozderko?= <jaroslaw.nozderko@polkomtel.com.pl> To: <freebsd-security@freebsd.org> Subject: MAC problems Message-ID: <2A857CE92C11FE40858689CAEC7BED4905558761@E2K2.corp.plusnet>
next in thread | raw e-mail | index | archive | help
FreeBSD version: 5.1-RELEASE =20 Hi, I'm quite new to FreeBSD. I've check list archives and=20 read a handbook, but I didn't find solution to my problem=20 and I hope this is not off-topic. I've installed 5.1-RELEASE, enabled ACLs on the filesystems=20 and I wanted to test MAC features. I'm also new to MAC, so=20 perhaps this is some my mistake. When I enable mac_biba or mac_lomac (in loader.conf) without any configuration, it seems to block networking: =20 jarek@skorpion jarek> ping 192.168.65.100 PING 192.168.65.100 (192.168.65.100): 56 data bytes ping: sendto: Permission denied ping: sendto: Permission denied ping: sendto: Permission denied ^C --- 192.168.65.100 ping statistics --- 3 packets transmitted, 0 packets received, 100% packet loss On the other side, when mac_mls is loaded, networking works, but starting X server fails with message "Couldn't mmap /dev/vga" (I don't see /dev/vga device regardless of MAC policy loaded) =20 Is it normal, or is something wrong ? Is any additional documentation about MAC available, more than papers at http://www.trustedbsd.org ? I'd like to learn a bit more. =20 Regards and thanks for any help, Jarek
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?2A857CE92C11FE40858689CAEC7BED4905558761>