| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
| |
the caller does not specify the rule number -- instead, the kernel
module is probed for the next available rule, which is then used.
Obtained from: TrustedBSD Project
Sponsored by: DARPA, McAfee Research
|
| | |
|
| |
|
|
| |
Submitted by: Attila Nagy <bra@fsn.hu>
|
| |
|
|
| |
Sponsored by: DARPA, Network Associates Laboratories
|
| | |
|
| | |
|
| |
|
|
| |
Pointed out by: jake
|
| |
|
|
| |
Suggested by: mike
|
| |
|
|
|
|
| |
NOMAN is no longer required when a man page is not yet present.
Submitted by: ru
|
|
|
kernel access control.
Provide a library to manage user file system firewall-like rules
supported by the mac_bsdextended.ko security model. The kernel
module exports the current rule set using sysctl, and this
library provides a front end that includes support for retrieving
and setting rules, as well as printing and parsing them.
Note: as with other userland components, this is a WIP. However,
when used in combination with the soon-to-be-committed ugidfw,
it can actually be quite useful in multi-user environments to
allow the administrator to limit inter-user file operations without
resorting to heavier weight labeled security policies.
Obtained form: TrustedBSD Project
Sponsored by: DARPA, NAI Labs
|
