diff options
| author | Alexander Bluhm <bluhm@cvs.openbsd.org> | 2019-07-25 13:13:54 +0000 |
|---|---|---|
| committer | Alexander Bluhm <bluhm@cvs.openbsd.org> | 2019-07-25 13:13:54 +0000 |
| commit | f67acdb3f006501c6a1f7cf89ea2b95bbe4f01ee (patch) | |
| tree | 3a27b6ce6d5fbf5acb8817f4014403145b39fd12 /lib | |
| parent | ab1bf1f05062a1be9bbdfd6fb779ae0cfb48ddfb (diff) | |
Show unveil(2) violators in lastcomm(1) output and daily mail.
input Janne Johansson, schwarze@; OK deraadt@ millert@
Diffstat (limited to 'lib')
| -rw-r--r-- | lib/libc/sys/unveil.2 | 10 |
1 files changed, 8 insertions, 2 deletions
diff --git a/lib/libc/sys/unveil.2 b/lib/libc/sys/unveil.2 index c7766853620..02322f5f7b9 100644 --- a/lib/libc/sys/unveil.2 +++ b/lib/libc/sys/unveil.2 @@ -1,4 +1,4 @@ -.\" $OpenBSD: unveil.2,v 1.17 2019/03/24 19:55:31 jmc Exp $ +.\" $OpenBSD: unveil.2,v 1.18 2019/07/25 13:13:53 bluhm Exp $ .\" .\" Copyright (c) 2018 Bob Beck <beck@openbsd.org> .\" @@ -14,7 +14,7 @@ .\" ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF .\" OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. .\" -.Dd $Mdocdate: March 24 2019 $ +.Dd $Mdocdate: July 25 2019 $ .Dt UNVEIL 2 .Os .Sh NAME @@ -126,6 +126,12 @@ argument does not match the attempted operation. is returned for paths for which no .Nm permissions qualify. +After a process has terminated, +.Xr lastcomm 1 +will mark it with the +.Sq U +flag if file access was prevented by +.Fn unveil . .Pp .Fn unveil use can be tricky because programs misbehave badly when their files |