Date: Thu, 11 Jul 2024 07:25:21 +0200 (CEST) From: freebsd@oldach.net (Helge Oldach) To: naddy@mips.inka.de (Christian Weisgerber) Cc: freebsd-stable@freebsd.org Subject: Re: mac_do: gid rule fails Message-ID: <202407110525.46B5PLFD066383@nuc.oldach.net> In-Reply-To: <Zo8XmHe-95wOuy1n@lorvorc.mips.inka.de> from Christian Weisgerber at "11 Jul 2024 01:22:00"
next in thread | previous in thread | raw e-mail | index | archive | help
Christian Weisgerber wrote on Thu, 11 Jul 2024 01:22:00 +0200 (CEST): > However, a GID rule fails: > > $ sysctl security.mac.do.rules > security.mac.do.rules: gid=1000:any > $ id -g > 1000 > $ mdo id > mdo: failed to call setuid: Operation not permitted > > Is that a misunderstanding on my part, am I doing something wrong, > or is there a bug? mdo will execute as root user (by default) but you are not entitled to execute mdo as root. Kind regards Helge
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?202407110525.46B5PLFD066383>