Re: bsd.security.see_other_uids affecting netstat?
2009/12/3 Marc Silver <marcs@draenor.org>:
> Hi guys,
>
> Please forgive if this is a bit of a noob question
>
> I noticed that when the bsd.security.see_other_uids sysctl is set to 0, the
> netstat command gives no output for users (non-root).
No, it gives no access to sockets (switched to per-inpcb since 7) not
owned by that user.
See mac_seeotheruids(4):
DESCRIPTION
The mac_seeotheruids policy module, when enabled, denies users to see
processes or sockets owned by other users.
--
wbr,
pluknet
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
討論串 (同標題文章)