Hello, Full documentation here: http://blog.cykyc.org/2009/05/macportacl-and-no-love.html
Gist of it is that I enabled MAC_PORTACL and MAC, rebuilt the kernel and installed it for testing. I was not able to get a non-super user to open up a privileged port, though. What am I doing wrong? [2136] ~> sysctl -a security.mac security.mac.max_slots: 4 security.mac.version: 3 security.mac.mmap_revocation_via_cow: 0 security.mac.mmap_revocation: 1 security.mac.portacl.rules: security.mac.portacl.port_high: 1023 security.mac.portacl.autoport_exempt: 1 security.mac.portacl.suser_exempt: 1 security.mac.portacl.enabled: 1 [2136] ~> id uid=1001(foo) gid=0(wheel) groups=0(wheel) [2136] ~> sudo sysctl security.mac.portacl.rules=uid:1001:tcp:80 Password: security.mac.portacl.rules: -> uid:1001:tcp:80 [2136] ~> nc -l 80 nc: Permission denied TIA, Jon _______________________________________________ [email protected] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[email protected]"
