Status of mac_portacl Support in Jails?
- Go to: [ bottom of page ] [ top of archives ] [ this month ]
Date: Tue, 22 Apr 2025 12:50:22 UTC
Hello, I recently came across an old thread from 2005 where Pawel Jakub Dawidek published a patch to enable the use of mac_portacl within jails: https://lists.freebsd.org/pipermail/freebsd-security/2005-May/002961.html In the same thread, it was mentioned that Samy Al Bahra had a more flexible patch for this purpose. I was wondering - what became of this effort? Was any version of this ever integrated into the FreeBSD source tree or made available through another channel? Even 20 years later, this functionality would still be highly useful. For example, the Caddy web server - which by default runs as root- could benefit from mac_portacl when running in a jail. Any information or pointers would be greatly appreciated. Regards, Tom