From owner-freebsd-security  Wed Sep 17 11:52:46 1997
Return-Path: <owner-freebsd-security>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.7/8.8.7) id LAA01965
          for security-outgoing; Wed, 17 Sep 1997 11:52:46 -0700 (PDT)
Received: from ocean.campus.luth.se (ocean.campus.luth.se [130.240.194.116])
          by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id LAA01951
          for <freebsd-security@FreeBSD.ORG>; Wed, 17 Sep 1997 11:52:40 -0700 (PDT)
Received: (from karpen@localhost)
	by ocean.campus.luth.se (8.8.5/8.8.5) id UAA07882;
	Wed, 17 Sep 1997 20:58:20 +0200 (CEST)
From: Mikael Karpberg <karpen@ocean.campus.luth.se>
Message-Id: <199709171858.UAA07882@ocean.campus.luth.se>
Subject: Re: schg flag...
In-Reply-To: <199709171655.SAA26869@login.bigblue.no> from Frode Nordahl at "Sep 17, 97 06:55:07 pm"
To: froden@bigblue.no
Date: Wed, 17 Sep 1997 20:58:19 +0200 (CEST)
Cc: freebsd-security@FreeBSD.ORG
X-Mailer: ELM [version 2.4ME+ PL31H (25)]
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-security@FreeBSD.ORG
X-Loop: FreeBSD.org
Precedence: bulk

According to Frode Nordahl:
> On Wed, 17 Sep 1997 10:45:31 -0600, Sean Kelly wrote:
> 
> >The schg flag can't be changed when the system is running in securelevel
> >1 or 2.  See init(1) for more details.
> >
> >According to that man page, the securelevel is usually set in /etc/rc
> >during bootup.  A quick grep through /etc/* doesn't contain any
> >reference to securelevel, though.  You could probably add it yourself to
> >your own rc files, but it'd be nice if there were an /etc/rc.conf entry
> >for it.
> 
> Ok... Well then's a question, why is FreeBSD's standard mode to run in
> leve -1?  Isn't that a bit suicidal?

No, it's practical. Running at a higher securelevel just makes things harder
for you. Compiling a new kernel, etc. Why bother making your computer a
fortress when you really don't have much important data on it? It's just
annoying to have to lower the drawbridge every time you wanna run out to
pick a fresh apple. :-)

Ofcourse, when you set up a server which actually contains data you can't
afford to loose, or having someone unauthorised read, then you should
probably raise the secure level. But most machines running FreeBSD are
most likely just workstations, which can be wiped and reinstalled if
anything really bad happens. Therefor that's the default.

  /Mikael