Site Navigation

Date:      Mon, 14 May 2001 21:28:56 +0700
From:      Igor Podlesny <poige@morning.ru>
To:        root <root@apsara.barc.ernet.in>
Cc:        freebsd-security@FreeBSD.ORG
Subject:   Re: ipfw rules and securelevel
Message-ID:  <10320318256.20010514212856@morning.ru>
In-Reply-To: <Pine.LNX.4.33.0105141802230.18115-100000@apsara.barc.ernet.in>
References:  <Pine.LNX.4.33.0105141802230.18115-100000@apsara.barc.ernet.in>

---

next in thread | previous in thread | raw e-mail | index | archive | help

---

> Dear friends,
>         Even in securelevel 3 I can bypass ipfw rules. In securelevel 3 I
> as root can change the variable "net.inet.ip.fw.enable" using sysctl. When
> I run a command

>         sysctl -w net.inet.ip.fw.enable=0

>         It disables the ipfw rules.

> Is it a feature or hole in freebsd.

doesn't matter how it is called, only matters how it hurts... (it does)

> please help

-- 
 Igor                            mailto:poige@morning.ru



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

---

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?10320318256.20010514212856>

Legal Notices | © 1995-2024 The FreeBSD Project. All rights reserved.

Contact