From owner-freebsd-security  Wed Jul 14  1:26: 2 1999
Delivered-To: freebsd-security@freebsd.org
Received: from fledge.watson.org (fledge.watson.org [204.156.12.50])
	by hub.freebsd.org (Postfix) with ESMTP id 0190314D86
	for <security@FreeBSD.ORG>; Wed, 14 Jul 1999 01:26:00 -0700 (PDT)
	(envelope-from robert@cyrus.watson.org)
Received: from fledge.watson.org (robert@fledge.pr.watson.org [192.0.2.3])
	by fledge.watson.org (8.8.8/8.8.8) with SMTP id EAA20143;
	Wed, 14 Jul 1999 04:25:10 -0400 (EDT)
	(envelope-from robert@cyrus.watson.org)
Date: Wed, 14 Jul 1999 04:25:10 -0400 (EDT)
From: Robert Watson <robert@cyrus.watson.org>
X-Sender: robert@fledge.watson.org
Reply-To: Robert Watson <robert+freebsd@cyrus.watson.org>
To: Greg Black <gjb-freebsd@gba.oz.au>
Cc: Garrett Wollman <wollman@khavrinen.lcs.mit.edu>,
	Darren Reed <avalon@coombs.anu.edu.au>, security@FreeBSD.ORG
Subject: Re: Module magic 
In-Reply-To: <19990713122520.5758.qmail@alice.gba.oz.au>
Message-ID: <Pine.BSF.3.96.990714042411.20080C-100000@fledge.watson.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

On Tue, 13 Jul 1999, Greg Black wrote:

> Robert Watson writes:
> 
> > > > > FWIW, I believe NetBSD systems (and OpenBSD systems) ship configured to
> > > > > boot with securelevel == 0, as opposed to FreeBSD which appears to default
> > > > > to -1.
> > > > 
> > > > We think our users are more concerned about X working.
> > > 
> > > Are you saying that X does not work when securelevel >= 0 under
> > > FreeBSD?
> > 
> > If I recall, the XiG Accelerated X product requires direct access to
> > memory.  vm_mmap.c:
> > 
> > [...]
> > 
> > Their code should probably not do this, as direct memory access violates
> > kernel safety.
> 
> Can anybody tell me if this breakage only applies to XiG's
> Accelerated X or if it is also an issue with XFree86?

I believe only for XiG, but I have not tried it in quite a while.  The
best thing to do to test this is to bump up the sysctl, and then see if X
works.

  Robert N M Watson 

robert@fledge.watson.org              http://www.watson.org/~robert/
PGP key fingerprint: AF B5 5F FF A6 4A 79 37  ED 5F 55 E9 58 04 6A B1
TIS Labs at Network Associates, Computing Laboratory at Cambridge University
Safeport Network Services



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message