freebsd-nq/sys/security
Robert Watson 0d74c18651 Add a new sysctl/tunable to mac_portacl:
security.mac.portacl.autoport_exempt

This sysctl exempts to bind port '0' as long as IP_PORTRANGELOW hasn't
been set on the socket.  This is quite useful as it allows applications
to use automatic binding without adding overly broad rules for the
binding of port 0.  This sysctl defaults to enabled.

This is a slight variation on the patch submitted by the contributor.

MFC after:	2 weeks
Submitted by:	Michal Mertl <mime at traveller dot cz>
2004-12-08 11:46:44 +00:00
..
mac Implement MAC entry points relating to System V IPC, calling into the 2004-11-17 13:14:24 +00:00
mac_biba Minor white space synchronization and line wrapping. 2004-10-22 11:15:47 +00:00
mac_bsdextended Minor white space synchronization and line wrapping. 2004-10-22 11:15:47 +00:00
mac_ifoff Update my personal copyrights and NETA copyrights in the kernel 2004-02-22 00:33:12 +00:00
mac_lomac Introduce SLOT_SET macro and use it in place of casts as lvalues. 2004-07-28 07:01:33 +00:00
mac_mls Introduce SLOT_SET macro and use it in place of casts as lvalues. 2004-07-28 07:01:33 +00:00
mac_none Update my personal copyrights and NETA copyrights in the kernel 2004-02-22 00:33:12 +00:00
mac_partition Update my personal copyrights and NETA copyrights in the kernel 2004-02-22 00:33:12 +00:00
mac_portacl Add a new sysctl/tunable to mac_portacl: 2004-12-08 11:46:44 +00:00
mac_seeotheruids Update my personal copyrights and NETA copyrights in the kernel 2004-02-22 00:33:12 +00:00
mac_stub Introduce a temporary mutex, mac_ifnet_mtx, to lock MAC labels on 2004-06-24 03:34:46 +00:00
mac_test /%x/%s/ -- mismerged DEBUGGER() printf() format stirng from the 2004-10-23 15:12:34 +00:00