bin/109102: sysctl security.mac.bsdextended is not consistent with
the output of sysctl -d
Dr. Markus Waldeck
waldeck at gmx.de
Mon Feb 12 19:50:03 UTC 2007
>Number: 109102
>Category: bin
>Synopsis: sysctl security.mac.bsdextended is not consistent with the output of sysctl -d
>Confidential: no
>Severity: non-critical
>Priority: low
>Responsible: freebsd-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: sw-bug
>Submitter-Id: current-users
>Arrival-Date: Mon Feb 12 19:50:02 GMT 2007
>Closed-Date:
>Last-Modified:
>Originator: Dr. Markus Waldeck
>Release: 7.0-CURRENT-200702
>Organization:
>Environment:
FreeBSD fb 7.0-CURRENT-200702 FreeBSD 7.0-CURRENT-200702 #1: Sun Feb 11 14:37:59 UTC 2007
root at fbh:/huge/fbsrc200702/sys/i386/compile/FB070201 i386
>Description:
CUSTOM kernel:
options MAC
kldload mac_bsdextended.ko
% sysctl security.mac.bsdextended
security.mac.bsdextended.enabled: 1
security.mac.bsdextended.rule_count: 0
security.mac.bsdextended.rule_slots: 0
security.mac.bsdextended.rule_version: 2
security.mac.bsdextended.logging: 0
security.mac.bsdextended.firstmatch_enabled: 0
% sysctl -d security.mac.bsdextended
security.mac.bsdextended: TrustedBSD extended BSD MAC policy controls
security.mac.bsdextended.enabled: Enforce extended BSD policy
security.mac.bsdextended.rule_count: Number of defined rules
security.mac.bsdextended.rule_slots: Number of used rule slots
security.mac.bsdextended.rule_version: Version number for API
security.mac.bsdextended.logging: Log failed authorization requests
security.mac.bsdextended.firstmatch_enabled: Disable/enable match first rule functionality
security.mac.bsdextended.rules: BSD extended MAC rules
sysctl -d mentions security.mac.bsdextended.rules with does not exist and
shows some redundant newlines.
>How-To-Repeat:
% sysctl security.mac.bsdextended
% sysctl -d security.mac.bsdextended
>Fix:
>Release-Note:
>Audit-Trail:
>Unformatted:
More information about the freebsd-bugs
mailing list