Re: A few thoughts..

From: H. S. (security_at_revolutionsp.com)
Date: 03/30/05

  • Next message: Craig Boston: "Re: organization" 
    Date: Tue, 29 Mar 2005 16:40:20 -0600 (CST)
To: freebsd-hackers@freebsd.org

    > On Tue, Mar 29, 2005 at 03:12:25PM -0600, H. S. wrote:
    >> This could be compared to what was done in FreeBSD lately, I remember in
    >> 4.7 (and probably later, up to 4.10 I think) a user could see the full
    >> connection lists (even connections from other users), only later the
    >> kern.ps_showallprocs/security.bsd.see_other_uids took effect for these
    >> matters too.
    >
    > It needs time to implement and actually process such checks.

    I understand, and can only congratulate the freebsd developers for the
    nice programming you've all gotten us used to. I can't code C enough to be
    able to do anything really complex, however I do have a noction of how
    much effort is put into stuff like this.

    >
    >> > Have a look at mac(3), mac(4) and mac.conf(5), it's not systrace but
    >> you
    >> > can achieve
    >> > similar results.
    >>
    >> Systrace is much more complex than mac.
    >
    > That's a good one! It's actually quite the reverse, MAC is much more
    > powerful than systrace, simply because it operates on a different
    > level. You can do all this kind of checks with a MAC policy, if
    > something does not have the necessary hooks, complain to Robert Watson :)
    >
    > Joerg

    Hmm, I'll furthen my MAC knowledge then :-)
    > _______________________________________________
    > freebsd-hackers@freebsd.org mailing list
    > http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
    > To unsubscribe, send any mail to "freebsd-hackers-unsubscribe@freebsd.org"
    >

    _______________________________________________
    freebsd-hackers@freebsd.org mailing list
    http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
    To unsubscribe, send any mail to "freebsd-hackers-unsubscribe@freebsd.org"

  • Next message: Craig Boston: "Re: organization"

    Relevant Pages

    • Re: A few thoughts..
      ... > connection lists, ... > Systrace is much more complex than mac. ... MAC is much more ... something does not have the necessary hooks, complain to Robert Watson:) ...
      (freebsd-hackers)
    • Re: A convert to Apple says thanks
      ... questions in the thread "A convert to Apple needs friendly ... Clearly, Mac ... CCMP support seems to be quite a new thing and thus still quite ... > The 802.1X config panel lists these authentication mechanisms ...
      (uk.comp.sys.mac)
    • Re: Purpose of Word "Work Menu"
      ... flow of a Word doc - Mac or PC - so if you're not familiar with what they ... For comprehensive categorical lists of the keyboard shortcuts in Word just ... As to the Work menu, yes, it is specific to the Mac version of Word - at ... In trying to figure out what "command+8" is doing to my Word document (I hit ...
      (microsoft.public.mac.office.word)
    • Re: Players youve seen in person...and ones you wish you had.
      ... players I've seen in person over the years. ... about the lists that some of you might have. ... I did see Connors and Mac in exo @ LA Forum; ...
      (rec.sport.tennis)
    • Re: want to try Mac, but which?
      ... I've not found Windows to crash much either. ... I've only done this with Mac software, so I can't speak about others. ... I don't know how it'd deal with labels for a mail merge. ... Customer lists? ...
      (comp.sys.mac.system)