Subject: Re: Restricting kern.proc* access
To: None <tech-kern@netbsd.org>
From: Christos Zoulas <christos@zoulas.com>
List: tech-kern
Date: 10/17/2001 23:53:48
In article <20011017215654.A12106@nitric.net>, <xs@nitric.net> wrote:
>on Wed, Oct 17, 2001 at 08:40:31PM +0000, Christos Zoulas wrote:
>
>> Is there a real reason to have 2 sysctl variables? You could use -1
>> in the kern.restrict_proc_gid for the the unrestricted case..
>
>yes, I considered that. But gid_t is, as far as I can see, unsigned.
>So -1 could be a legitimate value. Would it be better to keep two
>variables, but interpret one sysctl?
Dunno, but send-pr it and someone will probably integrate it.
christos