Date: 10 Feb 2006 13:56:12 -0500 From: Lowell Gilbert <freebsd-questions-local@be-well.ilk.org> To: Alex Renn <ray@TXnet.com> Cc: freebsd-questions@freebsd.org Subject: Re: CD installation and file flags Message-ID: <44y80jyreb.fsf@be-well.ilk.org> In-Reply-To: <358523811.20060209192506@TXnet.com> References: <358523811.20060209192506@TXnet.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Alex Renn <ray@TXnet.com> writes: > I installed FreeBSD 6.0 from CD and noticed that file flags were not > applied by default to /boot, /bin, /sbin. Right. suid files get the flags, but nothing else. > I set kernel_securelevel to 3 but it does not help a lot while there > are no schg flags on system files. File flags are enforced at a securelevel of 1. If they are all you care about, then there's no reason to add the filesystem mounting, clock, and firewall restrictions of levels 2 and 3. > Is there any script to set proper flags for all files in the default > installation? There is not widespread agreement on the definition of "proper" in that sentence. Once you have a precise idea of what you think it should be, writing a script for your particular needs will be trivial. Be well. -- Lowell Gilbert, embedded/networking software engineer, Boston area http://be-well.ilk.org/~lowell/
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?44y80jyreb.fsf>