From owner-freebsd-hackers Sun Apr 27 00:22:28 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id AAA01719 for hackers-outgoing; Sun, 27 Apr 1997 00:22:28 -0700 (PDT) Received: from sax.sax.de (sax.sax.de [193.175.26.33]) by hub.freebsd.org (8.8.5/8.8.5) with SMTP id AAA01713 for ; Sun, 27 Apr 1997 00:22:26 -0700 (PDT) Received: (from uucp@localhost) by sax.sax.de (8.6.12/8.6.12-s1) with UUCP id JAA25472 for freebsd-hackers@freebsd.org; Sun, 27 Apr 1997 09:22:00 +0200 Received: (from j@localhost) by uriah.heep.sax.de (8.8.5/8.8.5) id JAA07050; Sun, 27 Apr 1997 09:10:19 +0200 (MET DST) Message-ID: <19970427091019.YV06768@uriah.heep.sax.de> Date: Sun, 27 Apr 1997 09:10:19 +0200 From: j@uriah.heep.sax.de (J Wunsch) To: freebsd-hackers@freebsd.org Subject: Re: sysctl -A References: <19970426184806.CQ22306@uriah.heep.sax.de> <199704262016.NAA07533@phaeton.artisoft.com> X-Mailer: Mutt 0.60_p2-3,5,8-9 Mime-Version: 1.0 X-Phone: +49-351-2012 669 X-PGP-Fingerprint: DC 47 E6 E4 FF A6 E9 8F 93 21 E0 7D F9 12 D6 4E Reply-To: joerg_wunsch@uriah.heep.sax.de (Joerg Wunsch) In-Reply-To: <199704262016.NAA07533@phaeton.artisoft.com>; from Terry Lambert on Apr 26, 1997 13:16:58 -0700 Sender: owner-hackers@freebsd.org X-Loop: FreeBSD.org Precedence: bulk As Terry Lambert wrote: > > securelevel > 0 and X11 are mutually exclusive. > My DEC Alpha runs at secure level 1, and X works fine. So now, look and tell us how they're doing it. I know how XFree86 avoids the problem on NetBSD, with the NetBSD aperture driver. But i also know that this is only another kind of a hack, and it's arguable whether you are still allowed to call it `securelevel 1' with the aperture driver. It's easy to find a race to break the security model. Pulling all the dix code from the Xserver into the kernel would be the technically correct solution, but is out of the question due to the sheer amount of work required (and due to decentralizing the maintenance that's currently done in an operating-system independent way by the XFree86 team). -- cheers, J"org joerg_wunsch@uriah.heep.sax.de -- http://www.sax.de/~joerg/ -- NIC: JW11-RIPE Never trust an operating system you don't have sources for. ;-)