Date: Thu, 7 May 2020 23:27:14 +0000 (UTC) From: Ben Woods <woodsb02@FreeBSD.org> To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r534305 - head/net/dhcpcd-devel Message-ID: <202005072327.047NREma075498@repo.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: woodsb02 Date: Thu May 7 23:27:14 2020 New Revision: 534305 URL: https://svnweb.freebsd.org/changeset/ports/534305 Log: net/dhcpcd-devel: Improve pkg-descr description of new dhcpcd-9 features Modified: head/net/dhcpcd-devel/pkg-descr Modified: head/net/dhcpcd-devel/pkg-descr ============================================================================== --- head/net/dhcpcd-devel/pkg-descr Thu May 7 23:19:06 2020 (r534304) +++ head/net/dhcpcd-devel/pkg-descr Thu May 7 23:27:14 2020 (r534305) @@ -2,9 +2,11 @@ dhcpcd is a DHCP/IPv4LL/IPv6RS/DHCPv6 client. It can also act as a network manager, responding to new interfaces, listening for carrier up/down events and managing routes. -dhcpcd-9 includes privilege separation; operations which do not require -root privileges are run in a chroot (/var/chroot/dhcpcd) as the -unprivileged user _dhcp. +dhcpcd-9 introduces a number of security improvements: +- privilege separation; operations which do not require root privileges + are run in a chroot /var/chroot/dhcpcd as the unprivileged user _dhcp +- capsicumized all network facing processes; all fd's in network facing + processes are fully limited This is an experimental version for testing purposes.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?202005072327.047NREma075498>