From owner-cvs-all  Fri Aug  2  0: 7:42 2002
Delivered-To: cvs-all@freebsd.org
Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id D699F37B401; Fri,  2 Aug 2002 00:07:35 -0700 (PDT)
Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21])
	by mx1.FreeBSD.org (Postfix) with ESMTP
	id 9DB8143E4A; Fri,  2 Aug 2002 00:07:35 -0700 (PDT)
	(envelope-from rwatson@FreeBSD.org)
Received: from freefall.freebsd.org (rwatson@localhost [127.0.0.1])
	by freefall.freebsd.org (8.12.4/8.12.4) with ESMTP id g7277ZJU060619;
	Fri, 2 Aug 2002 00:07:35 -0700 (PDT)
	(envelope-from rwatson@freefall.freebsd.org)
Received: (from rwatson@localhost)
	by freefall.freebsd.org (8.12.4/8.12.4/Submit) id g7277ZnO060618;
	Fri, 2 Aug 2002 00:07:35 -0700 (PDT)
Message-Id: <200208020707.g7277ZnO060618@freefall.freebsd.org>
From: Robert Watson <rwatson@FreeBSD.org>
Date: Fri, 2 Aug 2002 00:07:35 -0700 (PDT)
To: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org
Subject: cvs commit: src/lib/libugidfw Makefile ugidfw.c ugidfw.h
X-FreeBSD-CVS-Branch: HEAD
Sender: owner-cvs-all@FreeBSD.ORG
Precedence: bulk
List-ID: <cvs-all.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20cvs-all>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20cvs-all>
X-Loop: FreeBSD.ORG

rwatson     2002/08/02 00:07:35 PDT

  Added files:
    lib/libugidfw        Makefile ugidfw.c ugidfw.h 
  Log:
  Introduce support for Mandatory Access Control and extensible
  kernel access control.
  
  Provide a library to manage user file system firewall-like rules
  supported by the mac_bsdextended.ko security model.  The kernel
  module exports the current rule set using sysctl, and this
  library provides a front end that includes support for retrieving
  and setting rules, as well as printing and parsing them.
  
  Note: as with other userland components, this is a WIP.  However,
  when used in combination with the soon-to-be-committed ugidfw,
  it can actually be quite useful in multi-user environments to
  allow the administrator to limit inter-user file operations without
  resorting to heavier weight labeled security policies.
  
  Obtained form:  TrustedBSD Project
  Sponsored by:   DARPA, NAI Labs
  
  Revision  Changes    Path
  1.1       +11 -0     src/lib/libugidfw/Makefile (new)
  1.1       +712 -0    src/lib/libugidfw/ugidfw.c (new)
  1.1       +62 -0     src/lib/libugidfw/ugidfw.h (new)

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message