cvs commit: src/share/man/man4 tap.4 src/sys/net if_tap.c
Robert Watson
rwatson at FreeBSD.org
Wed Apr 13 09:03:49 PDT 2005
On Wed, 13 Apr 2005, Matthew N. Dodd wrote:
> mdodd 2005-04-13 00:30:19 UTC
>
> FreeBSD src repository
>
> Modified files:
> share/man/man4 tap.4
> sys/net if_tap.c
> Log:
> Provide a sysctl (net.link.tap.user_open) to allow unpriviliged
> acces to tap(4) device nodes based on file system permission.
>
> Duplicate the 'debug.if_tap_debug' sysctl under the
> 'net.link.tap' hierarchy.
Is there any reason to require suser() at all for open, given that our
devfs permissions are conservative? Maybe we should remove that suser()
and add a couple for specific tapioctl() calls that are more sensitive?
Robert N M Watson
More information about the cvs-all
mailing list