Date: Mon, 05 Feb 1996 22:49:53 -0800 From: Gary Palmer <gpalmer@cdrom.com> To: wkt@csadfa.cs.adfa.oz.au (Warren Toomey) Cc: freebsd-security@freebsd.org Subject: Re: Some Kernel Security Patches Message-ID: <3140.823589393@westhill.cdrom.com> In-Reply-To: Your message of "Tue, 06 Feb 1996 09:43:22 %2B1100." <9602052243.AA29826@dolphin>
next in thread | previous in thread | raw e-mail | index | archive | help
Warren Toomey wrote in message ID <9602052243.AA29826@dolphin>: > I have some kernel patches for FreeBSD 2.1 to help improve > network security. If you're interested, I'm presenting a paper about the > stuff next week at a conference here in Australia. You can get the paper > at http://minnie.cs.adfa.oz.au/Seminars/AUUG96/netpaper.html, and it has a > hyperlink to the kernel patches (and a few other things). Hi I tried out your patches in one of our machines and ran into an intersting problem. The kernel starts out the boot process with nothing bound, and (if it's a busy server) can get hit A LOT before any services (such as named) can be loaded. Anyone know any way around this? I was thinking of trying to create a sysctl variable which would enable the logging, and you could stick that in /etc/rc.local (which is after all the servers are started), but I don't want to hack sysconfig much :-( Any other ideas? Gary
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3140.823589393>