bsdextended mac module question

David Malone dwmalone at
Mon Jun 27 09:44:27 GMT 2005

On Mon, Jun 27, 2005 at 10:45:35AM +0200, K?vesd?n G?bor wrote:
> Hello,
> I try to make a bsdextended mac policy and when I add the following 
> rule, I can't login with a simple user:
> ugidfw add subject not uid root object uid root mode rx

I think you'll need to allow stat permission too - say "rxs" not
just "rx".

You may also want to think about what this rule does to /tmp.


More information about the freebsd-questions mailing list