Re: A few thoughts..

• Previous message: Bruce A. Mah: "Re: organization"
• In reply to: Joerg Sonnenberger: "Re: A few thoughts.."
• Next in thread: c0ldbyte: "Re: A few thoughts.."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Date: Tue, 29 Mar 2005 16:40:20 -0600 (CST)
To: freebsd-hackers@freebsd.org

> On Tue, Mar 29, 2005 at 03:12:25PM -0600, H. S. wrote:
>> This could be compared to what was done in FreeBSD lately, I remember in
>> 4.7 (and probably later, up to 4.10 I think) a user could see the full
>> connection lists (even connections from other users), only later the
>> kern.ps_showallprocs/security.bsd.see_other_uids took effect for these
>> matters too.
>
> It needs time to implement and actually process such checks.

I understand, and can only congratulate the freebsd developers for the
nice programming you've all gotten us used to. I can't code C enough to be
able to do anything really complex, however I do have a noction of how
much effort is put into stuff like this.

>
>> > Have a look at mac(3), mac(4) and mac.conf(5), it's not systrace but
>> you
>> > can achieve
>> > similar results.
>>
>> Systrace is much more complex than mac.
>
> That's a good one! It's actually quite the reverse, MAC is much more
> powerful than systrace, simply because it operates on a different
> level. You can do all this kind of checks with a MAC policy, if
> something does not have the necessary hooks, complain to Robert Watson :)
>
> Joerg

Hmm, I'll furthen my MAC knowledge then :-)
> _______________________________________________
> freebsd-hackers@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
> To unsubscribe, send any mail to "freebsd-hackers-unsubscribe@freebsd.org"
>

_______________________________________________
freebsd-hackers@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
To unsubscribe, send any mail to "freebsd-hackers-unsubscribe@freebsd.org"

• Previous message: Bruce A. Mah: "Re: organization"
• In reply to: Joerg Sonnenberger: "Re: A few thoughts.."
• Next in thread: c0ldbyte: "Re: A few thoughts.."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Relevant Pages Re: A few thoughts.. ... > connection lists, ... > Systrace is much more complex than mac. ... MAC is much more ... something does not have the necessary hooks, complain to Robert Watson:) ... (freebsd-hackers) Re: A convert to Apple says thanks ... questions in the thread "A convert to Apple needs friendly ... Clearly, Mac ... CCMP support seems to be quite a new thing and thus still quite ... > The 802.1X config panel lists these authentication mechanisms ... (uk.comp.sys.mac) Re: Players youve seen in person...and ones you wish you had. ... players I've seen in person over the years. ... about the lists that some of you might have. ... I did see Connors and Mac in exo @ LA Forum; ... (rec.sport.tennis) Re: want to try Mac, but which? ... I've not found Windows to crash much either. ... I've only done this with Mac software, so I can't speak about others. ... I don't know how it'd deal with labels for a mail merge. ... Customer lists? ... (comp.sys.mac.system) Re: Corrupted Word Files ... It is for PC, not Mac. ... each of the Word 2007 equipped machines (to their hard drives, ... Then it lists the options of using the "Open and Repair ... (microsoft.public.mac.office.word)