0x1eef/bsdcontrol.rb
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
bsdcontrol.rb/README.md

87 lines
2.1 KiB
Markdown
Raw Normal View History

First commit
2024-03-01 02:29:43 +01:00
## About
Initial commit
2024-03-01 02:28:22 +01:00
README: update
2024-03-08 02:35:34 +01:00
hbsdctl.rb is a C extension that binds libhbsdcontrol from the
[hardenedbsd](https://hardenedbsd.org) project to Ruby. Through
this library, you can query what features are available and if
README: update
2024-03-08 05:36:06 +01:00
root: enable, disable or query the status of a feature for a
given file.
Initial commit
2024-03-01 02:28:22 +01:00
First commit
2024-03-01 02:29:43 +01:00
## Examples
Initial commit
2024-03-01 02:28:22 +01:00
README: update
2024-03-08 05:36:06 +01:00
__Features__
Initial commit
2024-03-01 02:28:22 +01:00
First commit
2024-03-01 02:29:43 +01:00
As a regular user account, you can obtain a list of available features.
README: update
2024-03-08 05:36:06 +01:00
But to enable, disable or query the status of a feature for a given file
a superuser account is required:
Initial commit
2024-03-01 02:28:22 +01:00
First commit
2024-03-01 02:29:43 +01:00
``` ruby
#!/usr/bin/env ruby
# As a regular user account
README: update
2024-03-08 05:36:06 +01:00
require "hbsdctl"
First commit
2024-03-01 02:29:43 +01:00
BSD::Control
.available_features
.each do
print "The ", _1.name, " feature is available", "\n"
end
Initial commit
2024-03-01 02:28:22 +01:00
```
README: update
2024-03-08 05:36:06 +01:00
__Enable__
Initial commit
2024-03-01 02:28:22 +01:00
README: update
2024-03-08 05:36:06 +01:00
As a superuser account, you can enable or disable a feature for a given file.
First commit
2024-03-01 02:29:43 +01:00
The example enables the mprotect feature for the emacs binary:
Initial commit
2024-03-01 02:28:22 +01:00
First commit
2024-03-01 02:29:43 +01:00
``` ruby
#!/usr/bin/env ruby
README: update
2024-03-08 05:36:06 +01:00
# As a superuser account
require "hbsdctl"
First commit
2024-03-01 02:29:43 +01:00
BSD::Control
Control#feature! -> Control#feature
2024-03-08 05:23:16 +01:00
.feature(:mprotect)
README: update
2024-03-08 02:35:34 +01:00
.enable!("/usr/local/bin/emacs-29.2")
First commit
2024-03-01 02:29:43 +01:00
```
Initial commit
2024-03-01 02:28:22 +01:00
README: update
2024-03-08 05:36:06 +01:00
__Status__
As a superuser account, you can query whether or not a feature is enabled or disabled
for a given file. There are four statuses that can be returned: `conflict`, `sysdef`,
`enabled`, and `disabled`. The first status (conflict) is rare and indicates that a
feature is both enabled and disabled. The other three are more common. The `sysdef`
status indicates that a feature takes its settings from the system default (sysctl):
``` ruby
#!/usr/bin/env ruby
# As a superuser account
require "hbsdctl"
BSD::Control
.feature(:mprotect)
.status("/bin/ls") # => :sysdef
```
README: update
2024-03-08 02:35:34 +01:00
## Documentation
A complete API reference is available at
[0x1eef.github.io/x/hbsdctl.rb](https://0x1eef.github.io/x/hbsdctl.rb).
Add LICENSE
2024-03-01 02:35:05 +01:00
## Install
**Git**
hbsdctl.rb is distributed as a RubyGem through its git repositories. <br>
README: update
2024-03-08 05:36:06 +01:00
[git.hardenedbsd.org](https://git.hardenedbsd.org/0x1eef/hbsdctl.rb),
Add LICENSE
2024-03-01 02:35:05 +01:00
[GitHub](https://github.com/0x1eef/hbsdctl.rb),
and
[GitLab](https://gitlab.com/0x1eef/hbsdctl.rb)
are available as sources.
**Rubygems.org**
Fix typo
2024-03-01 03:49:37 +01:00
hbsdctl.rb can also be installed via rubygems.org.
Add LICENSE
2024-03-01 02:35:05 +01:00
gem install hbsdctl.rb
Initial commit
2024-03-01 02:28:22 +01:00
## License
First commit
2024-03-01 02:29:43 +01:00
[BSD Zero Clause](https://choosealicense.com/licenses/0bsd/).
<br>
See [LICENSE](./LICENSE).
Reference in a new issue Copy permalink