Date: Mon, 1 Aug 2005 23:11:37 +0100 From: Ceri Davies <ceri@submonkey.net> To: Mark Linimon <linimon@FreeBSD.org>, glaive@vaned.net Cc: freebsd-bugs@FreeBSD.org, freebsd-gnats-submit@freebsd.org Subject: Re: docs/84453: bsd_seeotheruids root user exempt from policy Message-ID: <6AD0E165-C5F6-4516-B987-05F4D74F5E7F@submonkey.net> In-Reply-To: <200508012127.j71LRp3K000897@freefall.freebsd.org> References: <200508012127.j71LRp3K000897@freefall.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On 1 Aug 2005, at 21:27, Mark Linimon wrote: > Synopsis: bsd_seeotheruids root user exempt from policy > > Responsible-Changed-From-To: freebsd-bugs->freebsd-doc > Responsible-Changed-By: linimon > Responsible-Changed-When: Mon Aug 1 21:27:15 GMT 2005 > Responsible-Changed-Why: > This sounds like a problem with the Handbook. More information is required. Simply loading the kernel module is not enough; the sysctl security.mac.seeotheruids.enabled must be set to 1 for the policy to be active. Could the submitter please post the output of "sysctl -a | grep security.mac" on the affected system? Ceri -- Only two things are infinite, the universe and human stupidity, and I'm not sure about the former. -- Einstein (attrib.)
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?6AD0E165-C5F6-4516-B987-05F4D74F5E7F>