diff --git a/en_US.ISO8859-1/books/handbook/mac/chapter.sgml b/en_US.ISO8859-1/books/handbook/mac/chapter.sgml
index 9c89f24109..00c7c54f5f 100644
--- a/en_US.ISO8859-1/books/handbook/mac/chapter.sgml
+++ b/en_US.ISO8859-1/books/handbook/mac/chapter.sgml
@@ -1248,7 +1248,7 @@ test: biba/high
:passwordtime=91d:\
:umask=022:\
:ignoretime@:\
- :label=partition/13,mls/5,biba/low:
+ :label=partition/13,mls/5,biba/10:
The &man.cap.mkdb.1; command needs to be ran on
&man.login.conf.5; before any of the
@@ -1634,7 +1634,9 @@ test: biba/low
Observations: a lower integrity subject is unable to write
to a higher integrity subject; a higher integrity subject cannot
- observe or read a lower integrity object.
+ observe or read a lower integrity object. Setting a label at the
+ lowest possible grade could make it inaccessible to
+ subjects.
@@ -2050,7 +2052,7 @@ cat: test4: Permission denied
will accomplish this task in a few moments.
Now create another class, web, a copy of default,
- with the label setting of biba/low.
+ with the label setting of biba/10.
Create a user who will be used to work with the
main web data stored in a cvs
@@ -2099,9 +2101,9 @@ exit;
command="setpmac biba/low /usr/local/sbin/httpd"
The Apache configuration must be
- altered to work with the biba/low policy. In
+ altered to work with the biba/10 policy. In
this case the software must be configured to append to the
- log files in a directory set at biba/low
+ log files in a directory set at biba/10
or else access denied errors will be
returned.