git: b0a30eed2426 - releng/14.0 - sysctl(8): Mention more security.bsd knobs; Refer to security(7)

From: Mitchell Horne <mhorne_at_FreeBSD.org>
Date: Wed, 18 Oct 2023 18:04:01 UTC
The branch releng/14.0 has been updated by mhorne:

URL: https://cgit.FreeBSD.org/src/commit/?id=b0a30eed2426188697a6096f2c78686d90aa6225

commit b0a30eed2426188697a6096f2c78686d90aa6225
Author:     Olivier Certner <olce.freebsd@certner.fr>
AuthorDate: 2023-08-17 23:54:49 +0000
Commit:     Mitchell Horne <mhorne@FreeBSD.org>
CommitDate: 2023-10-18 18:02:20 +0000

    sysctl(8): Mention more security.bsd knobs; Refer to security(7)
    
    Approved by:            re (gjb)
    Reviewed by:            mhorne, pauamma_gundo.com, emaste
    Sponsored by:           Kumacom SAS
    Differential Revision:  https://reviews.freebsd.org/D41113
    
    (cherry picked from commit 8d7a48d367ffde2a29419ef943c4099984e3af4d)
    (cherry picked from commit 0e480eda041122ec8571d14ed1ebe8787a384972)
---
 sbin/sysctl/sysctl.8 | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/sbin/sysctl/sysctl.8 b/sbin/sysctl/sysctl.8
index 3e995e40131b..ed768510eb6c 100644
--- a/sbin/sysctl/sysctl.8
+++ b/sbin/sysctl/sysctl.8
@@ -27,7 +27,7 @@
 .\"
 .\"	From: @(#)sysctl.8	8.1 (Berkeley) 6/6/93
 .\"
-.Dd December 24, 2022
+.Dd August 18, 2023
 .Dt SYSCTL 8
 .Os
 .Sh NAME
@@ -194,7 +194,9 @@ for more information on which tunables are available and how to set them.
 .Pp
 The string and integer information is summarized below.
 For a detailed description of these variables see
-.Xr sysctl 3 .
+.Xr sysctl 3
+and
+.Xr security 7 .
 .Pp
 The changeable column indicates whether a process with appropriate
 privilege can change the value.
@@ -231,6 +233,8 @@ String and integer values can be set using
 .It "kern.logsigexit	integer	yes"
 .It "security.bsd.suser_enabled	integer	yes"
 .It "security.bsd.see_other_uids	integer	yes"
+.It "security.bsd.see_other_gids	integer	yes"
+.It "security.bsd.see_jail_proc	integer	yes"
 .It "security.bsd.unprivileged_proc_debug	integer	yes"
 .It "security.bsd.unprivileged_read_msgbuf	integer	yes"
 .It "vm.loadavg	struct	no"
@@ -320,6 +324,7 @@ option has been deprecated and is silently ignored.
 .Xr sysctl 3 ,
 .Xr loader.conf 5 ,
 .Xr sysctl.conf 5 ,
+.Xr security 7,
 .Xr loader 8
 .Sh HISTORY
 A