713e7df9b3
Rename __sysctl syscall to just sysctl, as the userland wrapper is no longer
necessary
ok deraadt@ jsing@
9 years ago
0c0197a7ee
/dev/random has created the same effect as /dev/arandom (and /dev/urandom)
for quite some time. Mop up the last few, by using /dev/random where we
actually want it, or not even mentioning arandom where it is irrelevant.
10 years ago
b0315aca81
disable use of bind in base; in the base use nsd/unbound instead.
a proper & complete bind port will show up.
discussed with many for years
10 years ago
421312ed52
no longer play with /dev/log
10 years ago
fbc71be3ba
Update for arc4random and syslog changes
10 years ago
8ec242689e
Permit a few more syscalls for named to run.
OK deraadt
14 years ago
fbc57aea01
- update policies to what is actually needed in -current
- deny access to /etc/spwd.db, permit pwd.db instead
- fixes pr 3748
- cosmetics
"toss it in" deraadt@
21 years ago
9c9982ecc9
- no more /var/ssyslog (unused)
- no more /var/spool/lpd (lpd uses /var/spool/output)
- no more /var/preserve (old vi directory)
- update docs to reflect this
help with systrace provos@
help and ok millert@
22 years ago
705d700f21
bind9 needs nanosleep too; ok jakob@
22 years ago
d6d9042e79
allow to read some directories itself
22 years ago
d0ef880beb
bind9ify
22 years ago
86de71128b
add id-tag
22 years ago
28f2623eaa
update policy
22 years ago
a5ae90d10e
policy for lpd
22 years ago
baaba1e0f4
named policy for systrace
22 years ago
guenther