On Tue, Jan 14, 2020 at 11:05:38AM -0700, Theo de Raadt wrote:
> Some of the pledges (such as "pf") exist to support a cluster of
> programs -- not just 1 program -- and improve their security by limiting
> what they can do. So that when the program gets subverted due something
> on it's input, th
> I'm in the process of building a program that adds IP addresses to a table,
> from the network, It is HMAC'ed.
>
> I was stopped by a pledge, it seems it was not configured. Here is the
> ktrace snippet:
>
> 40051 table-server CALL open(0xbb705fb11f6,0x2)
> 40051 table-server NAMI "/dev/
Hi,
I'm in the process of building a program that adds IP addresses to a table,
from the network, It is HMAC'ed.
I was stopped by a pledge, it seems it was not configured. Here is the
ktrace snippet:
40051 table-server CALL open(0xbb705fb11f6,0x2)
40051 table-server NAMI "/dev/pf"
40051
