Document recently added security.mac.portacl.autoport_exempt tunable.

Outraced the speed of doc request: trhodes
author: trhodes <trhodes@FreeBSD.org> 2004-12-08 15:58:38 +0000
committer: trhodes <trhodes@FreeBSD.org> 2004-12-08 15:58:38 +0000
commit: a3e11dfa9b1fa344ae2ae1129eaf1c441f32d88e (patch)
tree: c26942c136d8f9ed4c0fc9e4d77a0044f21dd0cd /share/man/man4/mac_portacl.4
parent: 99506151c1f88fd21e5dd58815ab28f131547983 (diff)
download: FreeBSD-src-a3e11dfa9b1fa344ae2ae1129eaf1c441f32d88e.zip
FreeBSD-src-a3e11dfa9b1fa344ae2ae1129eaf1c441f32d88e.tar.gz
1 files changed, 8 insertions, 0 deletions
diff --git a/share/man/man4/mac_portacl.4 b/share/man/man4/mac_portacl.4
index 39b819f..9aa7491 100644
--- a/share/man/man4/mac_portacl.4
+++ b/share/man/man4/mac_portacl.4
@@ -203,6 +203,14 @@ Allow superuser (i.e., root) to bind to all
 protected ports, even if the port access control list does not
 explicitly allow this.
 (Default: 1).
+.It Va security.mac.portacl.autoport_exempt
+Allow applications to use automatic binding to port 0.
+Often applications will use port 0 as a request for
+automatic port allocation before binding an IP address to
+a socket.  This tunable will exempt port 0 allocation from
+rule checking when a low port is required and
+.Dv IP_PORTRANGELOW
+is set to a value above 1.
 .El
 .Sh SEE ALSO
 .Xr mac 3 ,
author	trhodes <trhodes@FreeBSD.org>	2004-12-08 15:58:38 +0000
committer	trhodes <trhodes@FreeBSD.org>	2004-12-08 15:58:38 +0000
commit	a3e11dfa9b1fa344ae2ae1129eaf1c441f32d88e (patch)
tree	c26942c136d8f9ed4c0fc9e4d77a0044f21dd0cd /share/man/man4/mac_portacl.4
parent	99506151c1f88fd21e5dd58815ab28f131547983 (diff)
download	FreeBSD-src-a3e11dfa9b1fa344ae2ae1129eaf1c441f32d88e.zip FreeBSD-src-a3e11dfa9b1fa344ae2ae1129eaf1c441f32d88e.tar.gz