Aren
/
NetBSD
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
303,007 Commits 606 Branches 0 Tags 3.1 GiB
Commit Graph

35 Commits

Author SHA1 Message Date
dholland 52043314dd paxctl(8): it is not a bug that paxctl settings are persistent. 
Nor is it a bug that they're applied to the file rather than stored in
some magic secret database where they survive reinstalls, which the
prior wording seems to suggest was the eventual intention.

It is worth noting that they change the target file, so still say that.
 2023-08-21 00:41:49 +00:00
gutteridge 650194bf5d paxctl.8: minor grammar/style corrections 2023-08-16 22:22:02 +00:00
uwe fe895c9e5d paxctl(8): brush up 
Tell the user how to list flags right away, not at the very end.

Do not repeat "for the program" 6 times for each flag letter, it's a
noise by itself already and the italics of .Ar program exacerbates it.

Make the list of flags compact but manually add breaks between the
pairs of enable/disable flags.
 2023-06-23 10:27:12 +00:00
uwe be8e0f9749 paxctl(8): fix markup 2023-06-23 10:12:33 +00:00
wiz d2b8c51a36 Use Fl for options. 2023-06-23 06:32:27 +00:00
rin f598570bdb paxctl(8): Introduce -0 option to clear all PaX flag bits in ELF note. 
Part of PR toolchain/52675
 2023-06-23 01:56:21 +00:00
wiz 5027e397c4 New sentence, new line. 2016-11-08 08:21:52 +00:00
pgoyette 1cbf65cf52 Merge changes from David H. Gutteridge in PR misc/51612 
Thanks!
 2016-11-08 03:20:07 +00:00
riastradh 6cb10275d0 Merge riastradh-drm2 to HEAD. 2014-03-18 18:20:35 +00:00
wiz a5684d07dd Use Mt for email addresses. 2013-07-20 21:39:55 +00:00
wiz 769b2ceb89 security(7), not (8). 2011-04-28 11:57:08 +00:00
christos 6e36ff926d PR/42239: M. Levinson: paxctl(8) fails since binutils 2.19.1 upgrade 
binutils-2.19.1 tries to create one note section for all adjacent loadable
note sections, instead of the old behavior where each note is in its own
section. The fix looks at the section headers instead of the program headers
for the note.
 2009-10-27 16:27:47 +00:00
plunky 6fe312c1a9 offer some actual information about what PaX might be, and provide 
tips for further reading.
 2009-09-17 08:07:17 +00:00
christos 11a630f123 easier done with a goto instead of closing in each error. 2009-05-02 16:19:36 +00:00
elad 0b783346d2 PR/41332: Jason V. Miller: paxctl(8) leaks file descriptors 
Always close(fd) before returning.

Thanks for the report!
 2009-05-02 06:01:30 +00:00
lukem d877c4c3c0 Enable WARNS=4 by default, except for: 
cpuctl  dumplfs  hprop  ipf  iprop-log  kadmin  kcm  kdc  kdigest
	kimpersonate  kstash  ktutil  makefs  ndbootd  ntp  pppd  quot
	racoon  racoonctl  rtadvd  sntp  sup  tcpdchk  tcpdmatch  tcpdump
	traceroute  traceroute6  user  veriexecgen  wsmoused  zic
(Mostly third-party applications)
 2009-04-22 15:23:01 +00:00
lukem 29f2e1ce01 fix -Wsign-compare issues 2009-01-18 10:01:34 +00:00
christos 4c20e2ab03 try to handle different byte orders. 2008-08-11 10:58:02 +00:00
elad c61569c8b3 Add Christos to the AUTHORS section. 2008-02-11 18:05:58 +00:00
elad bdcc6c320e There's no use for the '-l' flag, so don't document it. Viewing PaX flags 
is done by issuing "paxctl file" with no flags, so note that it the
man-page instead.

From Michal Spacek, thanks!
 2008-02-11 18:03:14 +00:00
christos 7b06b28ff8 Document ASLR 2007-12-26 22:17:02 +00:00
christos 4e65b015fb Allow turning ASLR on and off. 2007-12-26 22:16:31 +00:00
elad 3278973321 Fix typos: 
- Mprotect -> MPROTECT
  - Servguard -> Segvguard

While here, pad values.
 2007-12-24 20:05:24 +00:00
perry 8b0f9554ff convert __attribute__s to applicable cdefs.h macros 2007-12-15 19:44:37 +00:00
christos f84222f6f6 fix usage to say we can take multiple files. 2007-12-11 01:40:27 +00:00
christos f8082d9a50 We should be able to operate on more than one file, like other unix tools. 2007-12-08 19:56:54 +00:00
perry e34be9798b Never use "utilize". It means exactly the same thing as "use", but it 
is longer and more cumbersome. It can always be replaced with "use"
without any change in meaning.
 2007-08-20 16:07:05 +00:00
christos 2ffe4b875f Use an elf note to handle pax arguments. This is a temporary solution to 
avoid wasting OS flag bits. In the future we'll probably use fileassoc to
achieve this (once there is a way to make fileassoc persistent) or in the
shorter term libelf, so that we can add and remove the note on demand instead
of burning bits on each binary. Of course since this is a tool, this means
that we'll need to think about how to handle libelf...
 2007-06-24 20:35:36 +00:00
wiz b95973aaa7 Sort sections. Use Po/Pc to avoid weird Xr arguments. 2007-05-19 14:18:33 +00:00
christos 90f5cb38b2 it is segvguard. 2007-03-04 22:25:00 +00:00
christos 8668f1cbbe Say that Servguard will use fileassoc in the future. From Elad. 2007-03-04 21:16:46 +00:00
elad 4a0f293388 revert previouses 2007-02-08 05:54:25 +00:00
elad d1a83ca2d5 Add a comment indicating why this program is installed 0550, as suggested 
by christos@. The comment reads:

	# This program is set 0550 because, as security(8) states, it has
	# the potential to deplete kernel memory, under certain conditions.
 2007-02-08 02:59:51 +00:00
elad db9dbd11ac Install paxctl(8) as 0550. 2007-02-08 02:25:44 +00:00
elad a8c0f0c72e Move paxctl from usr.bin/paxctl to usr.sbin/paxctl, and make it an admin 
tool (man-page moved from section 1 to section 8).
 2007-01-30 19:40:07 +00:00