how to deny reading of several sysctls (for a set of uids, f.e.)
Andrew N. Below
defan at zenon.net
Wed Jan 24 14:16:53 UTC 2007
> > Is there a documented possibility to use syscalls _inside_
> > kernel code?
> > In other words, I need to call the function located in
> > loadable kernel object from kernel, doesn't matter how
> > this would be done (syscall, etc).
> Hi Andrew,
> You can redirect syscalls to another function with loadable kernel
modules.
> Some documentation/examples you might want to read first:
>
> /usr/share/examples/kld
> http://www.r4k.net/mod/fbsdfun.html
> http://packetstormsecurity.org/papers/unix/bsdkern.htm
>
http://www.freebsd.org/doc/en_US.ISO8859-1/books/arch-handbook/driverbasics-
> kld.html
Thanks for these links, I have already seen them while googling around
last night and now I'm in process of understanding, heh.
Some things seems hard to get in becouse I'm working with RELENG_6,
and examples/info in those tutorials are for 4.x (struct proc instead of
struct thread, etc.) :)
Anyway, thanks. Will try to go forward.
--
Andrew N. Below
More information about the freebsd-hackers
mailing list