Remove a pre-5.3 note, language fixes, and add a missing </sect2>.
Approved by: remko (mentor) Obtained from: perforce No objections from: -doc
This commit is contained in:
parent
8e36e964dd
commit
a5926eabd1
Notes:
svn2git
2020-12-08 03:00:23 +00:00
svn path=/head/; revision=33285
1 changed files with 4 additions and 9 deletions
|
@ -967,12 +967,6 @@ test: biba/high</screen>
|
|||
|
||||
<screen>&prompt.root; <userinput>ugidfw add subject not uid root new object not uid root mode n</userinput></screen>
|
||||
|
||||
<note>
|
||||
<para>In releases prior to &os; 5.3, the
|
||||
<parameter>add</parameter> parameter did not exist. In those
|
||||
cases the <parameter>set</parameter> should be used
|
||||
instead. See below for a command example.</para></note>
|
||||
|
||||
<para>This is a very bad idea as it will block all users from
|
||||
issuing even the most simple commands, such as
|
||||
<command>ls</command>. A more patriotic list of rules
|
||||
|
@ -1427,6 +1421,7 @@ test: biba/high</screen>
|
|||
company information, and financial institution environments.
|
||||
The most unlikely place would be a personal workstation with
|
||||
only two or three users.</para>
|
||||
</sect2>
|
||||
</sect1>
|
||||
|
||||
<sect1 id="mac-biba">
|
||||
|
@ -1887,7 +1882,7 @@ setpmac biba/10\(10-10\) /usr/local/etc/rc.d/nagios.sh forcestart</userinput></s
|
|||
&man.mac.seeotheruids.4; could co-exist and block access not
|
||||
only to system objects but to hide user processes as well.
|
||||
|
||||
<para>Begin by adding the following lines to
|
||||
<para>Begin by adding the following line to
|
||||
<filename>/boot/loader.conf</filename>:</para>
|
||||
|
||||
<programlisting>mac_seeotheruids_enabled="YES"</programlisting>
|
||||
|
@ -2032,9 +2027,9 @@ setpmac biba/10\(10-10\) /usr/local/etc/rc.d/nagios.sh forcestart</userinput></s
|
|||
<sect2>
|
||||
<title>Error: &man..secure.path.3; cannot stat <filename>.login_conf</filename></title>
|
||||
|
||||
<para>When I attempt to switch from the <username>root</username>
|
||||
<para>When I attempt to switch from the <username>root</username> user
|
||||
to another user in the system, the error message
|
||||
<errorname>_secure_path: unable to state .login_conf</errorname>.</para>
|
||||
<errorname>_secure_path: unable to state .login_conf</errorname> appears.</para>
|
||||
|
||||
<para>This message is usually shown when the user has a higher
|
||||
label setting then that of the user whom they are attempting to
|
||||
|
|
Loading…
Reference in a new issue