Subject: Re: Restricting kern.proc* access
To: None <firstname.lastname@example.org>
From: Christos Zoulas <email@example.com>
Date: 10/17/2001 23:53:48
In article <20011017215654.A12106@nitric.net>, <firstname.lastname@example.org> wrote:
>on Wed, Oct 17, 2001 at 08:40:31PM +0000, Christos Zoulas wrote:
>> Is there a real reason to have 2 sysctl variables? You could use -1
>> in the kern.restrict_proc_gid for the the unrestricted case..
>yes, I considered that. But gid_t is, as far as I can see, unsigned.
>So -1 could be a legitimate value. Would it be better to keep two
>variables, but interpret one sysctl?
Dunno, but send-pr it and someone will probably integrate it.