taskgated(8) [osx man page]
taskgated(8) BSD System Manager's Manual taskgated(8) NAME
taskgated -- task_for_pid access control daemon SYNOPSIS
taskgated [-ps] [-t timeout] [-i pid] DESCRIPTION
taskgated is a system daemon that implements a policy for the task_for_pid system service. When the kernel is asked for the task port of a process, and preliminary access control checks pass, it invokes this daemon (via launchd) to make the decision. OPTIONS
-p Accepts the old (Tiger) convention that a process with a primary effective group of procmod or procview is allowed to get task ports. Without this option, this legacy mode is not supported. -s Allow signed applications marked as "safe" to have free access to task ports, without having to pass an authorization check. Note that such callers must be marked both allowed and safe. -t timeout The daemon will quit after that many seconds of inactivity. It will be relaunched by launchd as needed. A timeout of zero can be specified to make the daemon quit after servicing each request, but a small positive timeout is better for performance. -i pid Inject the service port of taskgated into the process with the given pid, rather than relying on launchd to install it system-wide. This is for testing only, and requires the launchd configuration for taskgated to be removed. AUTHORIZATION RIGHTS
system.privilege.taskport Authorization right used to check access of allowed (but not safe) callers. INFO KEYS
SecTaskAccess A value of "allowed" is required for any program that wants access to task ports. A value of "safe" bypasses authorization checks if so configured. Code must be signed by any system-trusted signing authority. FILES
/etc/authorization to configure the authorization used. /System/Library/LaunchDaemons/com.apple.taskgated startup configuration file for taskgated SEE ALSO
security(1), launchd(8) HISTORY
taskgated was first introduced in Mac OS 10.5 (Leopard). Certain software updates of Mac OS 10.4 (Tiger) introduced the convention requiring membership in the procmod or procview groups to control task port access. Before that, any process could obtain the task port of any other process with the same user-id. Darwin May 31, 2019 Darwin
Check Out this Related Man Page
pcastctl(8) BSD System Manager's Manual pcastctl(8) NAME
pcastctl -- Podcast Producer daemons control interface SYNOPSIS
pcastctl status target on|off|start|stop|restart OPTIONS
The available options are as follows: status print status of running daemons target affect agent or server daemon start|stop|restart explicitly start/stop/restart daemon. Note that 'restart' will kill all instances of a given daemon, as will 'stop' if none is specified in the pid file. RETURN VALUES
0 Completed succesfully. 1 Action failed 10 Not run as root. 50 Target not recognized: use 'a', or 's'. 51 Action not recognized: use start|stop|restart 52 Executables not found; may need to reinstall Podcast Producer. 53 Process directory not found; may need to reinstall Mac OS X. 54 Timeout waiting for action to complete. 55 Launchd manipulation failure. FILES
/usr/libexec/podcastproducer/pcastagentd Podcast Producer agent daemon /usr/share/podcastproducer/pcastserverd Podcast Producer server daemon /var/run/pcastagentd.pid Podcast Producer agent process ID /var/run/pcastserverd.pid Podcast Producer server process ID /System/Library/LaunchDaemons/com.apple.pcastagentd.plist Launchd agent daemon control file /System/Library/LaunchDaemons/com.apple.pcastserverd.plist Launchd server daemon control file EXAMPLES
status of Podcast Producer agent daemon $ pcastctl agent status edit launchd configuration to launch server on system startup $ pcastctl server on DIAGNOSTICS
Warning: Warning: ## copies of (pcastagentd|pcastserverd) already running Trying to launch another daemon when one or more already running; will usually succeed, but may cause unpredictable behavior. See also RETURN VALUES, above. ERRORS
Error: failed to launch (executable) Tried to start/restart a give daemon, but failed. Error: process 'executable' not currently running Tried to kill a process which did not exist. SEE ALSO
pcast(1) launchd(8) HISTORY
This program was first introduced in Mac OS X 10.5 "Leopard". It was inspired by xgridctl(8). BUGS
pcastctl(8) uses kill -TERM to allow the daemons a chance to die gracefully; there is currently no way to force a kill -KILL. Bug reports can be sent to bugreport.apple.com Feedback can be sent to podcastproducer@apple.com Mac OS September 29, 2004 Mac OS