how to deny reading of several sysctls (for a set of uids, f.e.)
Thijs Eilander
eilander at paranoid.nl
Wed Jan 24 14:20:25 UTC 2007
> Is there a documented possibility to use syscalls _inside_
> kernel code?
> In other words, I need to call the function located in
> loadable kernel object from kernel, doesn't matter how
> this would be done (syscall, etc).
Hi Andrew,
You can redirect syscalls to another function with loadable kernel modules.
Some documentation/examples you might want to read first:
/usr/share/examples/kld
http://www.r4k.net/mod/fbsdfun.html
http://packetstormsecurity.org/papers/unix/bsdkern.htm
http://www.freebsd.org/doc/en_US.ISO8859-1/books/arch-handbook/driverbasics-
kld.html
With best regards,
Thijs Eilander
More information about the freebsd-hackers
mailing list