bsdcontrol.rb/README.md

## About

hbsdctl.rb is a Ruby C extension that binds libhbsdcontrol from the
[hardenedbsd](https://hardenedbsd.org) project. Through this library,
you can query what features are available and if root, enable or disable
those features for a given executable.

## Examples

__Available features__

As a regular user account, you can obtain a list of available features.
But to enable or disable those features a superuser account is required:

``` ruby
#!/usr/bin/env ruby
# As a regular user account
require 'hbsdctl'
BSD::Control
  .available_features
  .each do
  print "The ", _1.name, " feature is available", "\n"
end
```

__Enable feature__

As a superuser account, you can enable or disable features for a given executable.
The example enables the mprotect feature for the emacs binary:

``` ruby
#!/usr/bin/env ruby
# As a root account
require 'hbsdctl'
BSD::Control
  .feature!(:mprotect)
  .enable!("/usr/local/bin/emacs")
```

## Install

**Git**

hbsdctl.rb is distributed as a RubyGem through its git repositories. <br>
[GitHub](https://github.com/0x1eef/hbsdctl.rb),
and
[GitLab](https://gitlab.com/0x1eef/hbsdctl.rb)
are available as sources.

**Rubygems.org**

lock.rb can also be installed via rubygems.org.

    gem install hbsdctl.rb

## License

[BSD Zero Clause](https://choosealicense.com/licenses/0bsd/).
<br>
See [LICENSE](./LICENSE).
First commit 2024-03-01 02:29:43 +01:00			`## About`
Initial commit 2024-03-01 02:28:22 +01:00
First commit 2024-03-01 02:29:43 +01:00			`hbsdctl.rb is a Ruby C extension that binds libhbsdcontrol from the`
			`[hardenedbsd](https://hardenedbsd.org) project. Through this library,`
			`you can query what features are available and if root, enable or disable`
Add LICENSE 2024-03-01 02:35:05 +01:00			`those features for a given executable.`
Initial commit 2024-03-01 02:28:22 +01:00
First commit 2024-03-01 02:29:43 +01:00			`## Examples`
Initial commit 2024-03-01 02:28:22 +01:00
First commit 2024-03-01 02:29:43 +01:00			`__Available features__`
Initial commit 2024-03-01 02:28:22 +01:00
First commit 2024-03-01 02:29:43 +01:00			`As a regular user account, you can obtain a list of available features.`
			`But to enable or disable those features a superuser account is required:`
Initial commit 2024-03-01 02:28:22 +01:00
First commit 2024-03-01 02:29:43 +01:00			``` ruby
			`#!/usr/bin/env ruby`
			`# As a regular user account`
			`require 'hbsdctl'`
			`BSD::Control`
			`.available_features`
			`.each do`
			`print "The ", _1.name, " feature is available", "\n"`
			`end`
Initial commit 2024-03-01 02:28:22 +01:00			```

First commit 2024-03-01 02:29:43 +01:00			`__Enable feature__`
Initial commit 2024-03-01 02:28:22 +01:00
First commit 2024-03-01 02:29:43 +01:00			`As a superuser account, you can enable or disable features for a given executable.`
			`The example enables the mprotect feature for the emacs binary:`
Initial commit 2024-03-01 02:28:22 +01:00
First commit 2024-03-01 02:29:43 +01:00			``` ruby
			`#!/usr/bin/env ruby`
			`# As a root account`
			`require 'hbsdctl'`
			`BSD::Control`
Accept a Symbol in `BSD::Control.feature!` 2024-03-01 02:40:38 +01:00			`.feature!(:mprotect)`
First commit 2024-03-01 02:29:43 +01:00			`.enable!("/usr/local/bin/emacs")`
			```
Initial commit 2024-03-01 02:28:22 +01:00
Add LICENSE 2024-03-01 02:35:05 +01:00			`## Install`

			`Git`

			`hbsdctl.rb is distributed as a RubyGem through its git repositories. <br>`
			`[GitHub](https://github.com/0x1eef/hbsdctl.rb),`
			`and`
			`[GitLab](https://gitlab.com/0x1eef/hbsdctl.rb)`
			`are available as sources.`

			`Rubygems.org`

			`lock.rb can also be installed via rubygems.org.`

			`gem install hbsdctl.rb`

Initial commit 2024-03-01 02:28:22 +01:00			`## License`

First commit 2024-03-01 02:29:43 +01:00			`[BSD Zero Clause](https://choosealicense.com/licenses/0bsd/).`
			`<br>`
			`See [LICENSE](./LICENSE).`