From owner-p4-projects  Thu Mar 21 18:45:24 2002
Delivered-To: p4-projects@freebsd.org
Received: by hub.freebsd.org (Postfix, from userid 32767)
	id 85D1637B400; Thu, 21 Mar 2002 18:45:19 -0800 (PST)
Delivered-To: perforce@freebsd.org
Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21])
	by hub.freebsd.org (Postfix) with ESMTP id D50D937B41A
	for <perforce@freebsd.org>; Thu, 21 Mar 2002 18:45:13 -0800 (PST)
Received: (from perforce@localhost)
	by freefall.freebsd.org (8.11.6/8.11.6) id g2M2jD995096
	for perforce@freebsd.org; Thu, 21 Mar 2002 18:45:13 -0800 (PST)
	(envelope-from bb+lists.freebsd.perforce@cyrus.watson.org)
Date: Thu, 21 Mar 2002 18:45:13 -0800 (PST)
Message-Id: <200203220245.g2M2jD995096@freefall.freebsd.org>
X-Authentication-Warning: freefall.freebsd.org: perforce set sender to bb+lists.freebsd.perforce@cyrus.watson.org using -f
From: Robert Watson <rwatson@FreeBSD.org>
Subject: PERFORCE change 8189 for review
To: Perforce Change Reviews <perforce@freebsd.org>
Sender: owner-p4-projects@FreeBSD.ORG
Precedence: bulk
List-ID: <p4-projects.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20p4-projects>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20p4-projects>
X-Loop: FreeBSD.ORG

http://people.freebsd.org/~peter/p4db/chv.cgi?CH=8189

Change 8189 by rwatson@rwatson_paprika on 2002/03/21 18:44:28

	mac_seeotheruids, a kernel module that provides the ability to
	prevent users from seeing processes (and related objects) owned
	by other uids except under specific policy-driven circumstances.
	This is a superset of the base system security.bsd.see_other_uids
	policy, and may eventually just replace it.  Build and kldload
	for entertainment.
	
	Note that currently this works for sockets due to some odd base
	system use of credentials.  Eventually, this may change, and
	probably should change.

Affected files ...

... //depot/projects/trustedbsd/mac/sys/modules/Makefile#11 edit
... //depot/projects/trustedbsd/mac/sys/modules/mac_seeotheruids/Makefile#1 add
... //depot/projects/trustedbsd/mac/sys/security/mac_seeotheruids/mac_seeotheruids.c#1 add

Differences ...

==== //depot/projects/trustedbsd/mac/sys/modules/Makefile#11 (text+ko) ====

@@ -55,6 +55,7 @@
 	lomac \
 	lpt \
 	mac_bsdextended \
+	mac_seeotheruids \
 	md \
 	mii \
 	mlx \

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe p4-projects" in the body of the message