8 # KEYWORD: nojail shutdown
13 desc="Firewall-like access controls for file system objects"
15 start_cmd="ugidfw_start"
16 stop_cmd="ugidfw_stop"
17 required_modules="mac_bsdextended"
21 if [ -r "${bsdextended_script}" ]; then
22 . "${bsdextended_script}"
28 [ -z "${bsdextended_script}" ] && bsdextended_script=/etc/rc.bsdextended
30 if [ -r "${bsdextended_script}" ]; then
32 echo "MAC bsdextended rules loaded."
42 # Check for the existence of rules and flush them if needed.
43 rulecount=$(sysctl -in security.mac.bsdextended.rule_count)
44 if [ ${rulecount:-0} -gt 0 ]; then
45 ugidfw list | sed -n '2,$p' | cut -d ' ' -f 1 | sort -r -n |
46 xargs -n 1 ugidfw remove
47 echo "MAC bsdextended rules flushed."