hardenedbsd/HardenedBSD
1
0
Fork 0
mirror of https://git.hardenedbsd.org/hardenedbsd/HardenedBSD.git synced 2024-11-22 21:31:05 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity
219caac69a
HardenedBSD/sys/security
History
Shivank Garg 215bab7924 mac_ipacl: new MAC policy module to limit jail/vnet IP configuration 
The mac_ipacl policy module enables fine-grained control over IP address
configuration within VNET jails from the base system.
It allows the root user to define rules governing IP addresses for
jails and their interfaces using the sysctl interface.

Requested by:	multiple
Sponsored by:	Google, Inc. (GSoC 2019)
MFC after:	2 months
Reviewed by:	bz, dch (both earlier versions)
Differential Revision: https://reviews.freebsd.org/D20967
2023-07-26 00:07:57 +00:00
..
audit vfs: retire KERN_VNODE 2023-03-17 16:21:45 +00:00
mac mac_ipacl: new MAC policy module to limit jail/vnet IP configuration 2023-07-26 00:07:57 +00:00
mac_biba IfAPI: Add if_get/setmaclabel() and use it. 2023-01-31 15:02:15 -05:00
mac_bsdextended
mac_ddb mac_ddb: Fix the show rman validator. 2022-08-12 10:20:05 -07:00
mac_ifoff IfAPI: Add if_get/setmaclabel() and use it. 2023-01-31 15:02:15 -05:00
mac_ipacl mac_ipacl: new MAC policy module to limit jail/vnet IP configuration 2023-07-26 00:07:57 +00:00
mac_lomac IfAPI: Add if_get/setmaclabel() and use it. 2023-01-31 15:02:15 -05:00
mac_mls IfAPI: Add if_get/setmaclabel() and use it. 2023-01-31 15:02:15 -05:00
mac_none
mac_ntpd
mac_partition
mac_pimd
mac_portacl
mac_priority
mac_seeotheruids
mac_stub
mac_test
mac_veriexec mac_veriexec ensure label fields are initialized 2023-07-06 09:26:15 -07:00
mac_veriexec_parser mac_veriexec_parser: fix build after 7e1d3eefd4. 2022-09-09 14:09:08 +02:00