From owner-freebsd-security@FreeBSD.ORG Wed Nov 8 07:22:47 2006 Return-Path: X-Original-To: freebsd-security@freebsd.org Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3331716A403 for ; Wed, 8 Nov 2006 07:22:47 +0000 (UTC) (envelope-from alexander@leidinger.net) Received: from redbull.bpaserver.net (redbullneu.bpaserver.net [213.198.78.217]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9092C43D46 for ; Wed, 8 Nov 2006 07:22:46 +0000 (GMT) (envelope-from alexander@leidinger.net) Received: from outgoing.leidinger.net (p54A5FE6A.dip.t-dialin.net [84.165.254.106]) by redbull.bpaserver.net (Postfix) with ESMTP id 21F4C2E21D; Wed, 8 Nov 2006 08:22:42 +0100 (CET) Received: from webmail.leidinger.net (webmail.Leidinger.net [192.168.1.102]) by outgoing.leidinger.net (Postfix) with ESMTP id 46DEB5B4C35; Wed, 8 Nov 2006 08:22:34 +0100 (CET) Received: (from www@localhost) by webmail.leidinger.net (8.13.8/8.13.8/Submit) id kA87MXOu045701; Wed, 8 Nov 2006 08:22:33 +0100 (CET) (envelope-from Alexander@Leidinger.net) Received: from pslux.cec.eu.int (pslux.cec.eu.int [158.169.9.14]) by webmail.leidinger.net (Horde MIME library) with HTTP; Wed, 08 Nov 2006 08:22:33 +0100 Message-ID: <20061108082233.agry96udb4k0sckk@webmail.leidinger.net> X-Priority: 3 (Normal) Date: Wed, 08 Nov 2006 08:22:33 +0100 From: Alexander Leidinger To: Wes Peters References: <20061104163000.30D2516A7A6@hub.freebsd.org> <0C344F30-40A1-4B08-A1C7-3F8CD536244D@opensail.org> In-Reply-To: <0C344F30-40A1-4B08-A1C7-3F8CD536244D@opensail.org> MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8; DelSp="Yes"; format="flowed" Content-Disposition: inline Content-Transfer-Encoding: quoted-printable User-Agent: Internet Messaging Program (IMP) H3 (4.1.3) / FreeBSD-7.0 X-BPAnet-MailScanner-Information: Please contact the ISP for more information X-BPAnet-MailScanner: Found to be clean X-BPAnet-MailScanner-SpamCheck: not spam, SpamAssassin (not cached, score=-2.363, required 6, BAYES_00 -2.60, DK_POLICY_SIGNSOME 0.00, FORGED_RCVD_HELO 0.14, J_CHICKENPOX_84 0.60, SMILEY -0.50) X-BPAnet-MailScanner-From: alexander@leidinger.net X-Spam-Status: No X-Mailman-Approved-At: Wed, 08 Nov 2006 12:54:32 +0000 Cc: freebsd-security@freebsd.org Subject: Re: freebsd-security Digest, Vol 184, Issue 2 X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 08 Nov 2006 07:22:47 -0000 Quoting Wes Peters (from Tue, 7 Nov 2006 20:19:40 -0800): > --- /etc/rc.d/dmesg Sat May 6 21:00:26 2006 > +++ dmesg Tue Nov 7 20:17:47 2006 > @@ -19,8 +19,10 @@ > do_dmesg() > { > - rm -f ${dmesg_file} > + mv -f ${dmesg_file} ${dmesg_file}.prev > ( umask 022 ; /sbin/dmesg $rc_flags > ${dmesg_file} ) > + cmp -s ${dmesg_file} ${dmesg_file}.prev || \ > + logger -p security.warn 'dmesg.boot changed from > previous boot' > } > load_rc_config $name > > > If you like that, I'm willing to discuss it further, and/or commit it > and let the howling tell if it's a keeper or not. ;^) Did you try this? I didn't, but I would expect to see this message =20 _every time_ (because of minor timecounter rate changes). Bye, Alexander. --=20 In those days he was wiser than he is now -- he used to frequently take my advice. =09=09-- Winston Churchill http://www.Leidinger.net Alexander @ Leidinger.net: PGP ID =3D B0063FE7 http://www.FreeBSD.org netchild @ FreeBSD.org : PGP ID =3D 72077137