Unverified Commit e40e3671 authored by Shawn Webb's avatar Shawn Webb
Browse files

Log when execution is denied due to whitelist mode.


Signed-off-by: Shawn Webb's avatarShawn Webb <shawn.webb@hardenedbsd.org>
parent ac5abfe7
......@@ -89,6 +89,8 @@ secadm_vnode_check_exec(struct ucred *ucred, struct vnode *vp,
SECADM_INTEGRIFORCE_FLAGS_WHITELIST) ==
SECADM_INTEGRIFORCE_FLAGS_WHITELIST) {
PE_RUNLOCK(entry);
printf("[SECADM] Whitelist Mode: Execution of %s denied.\n",
imgp->args->fname);
return (EPERM);
}
}
......
Supports Markdown
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment