From owner-freebsd-security Fri Feb 27 07:01:58 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id HAA29502 for freebsd-security-outgoing; Fri, 27 Feb 1998 07:01:58 -0800 (PST) (envelope-from owner-freebsd-security@FreeBSD.ORG) Received: from khavrinen.lcs.mit.edu (khavrinen.lcs.mit.edu [18.24.4.193]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id HAA29497 for ; Fri, 27 Feb 1998 07:01:54 -0800 (PST) (envelope-from wollman@khavrinen.lcs.mit.edu) Received: (from wollman@localhost) by khavrinen.lcs.mit.edu (8.8.8/8.8.8) id KAA04815; Fri, 27 Feb 1998 10:01:50 -0500 (EST) (envelope-from wollman) Date: Fri, 27 Feb 1998 10:01:50 -0500 (EST) From: Garrett Wollman Message-Id: <199802271501.KAA04815@khavrinen.lcs.mit.edu> To: Cy Schubert - ITSD Open Systems Group Cc: freebsd-security@FreeBSD.ORG Subject: Re: OpenBSD Security Advisory: mmap() Problem In-Reply-To: <199802270423.UAA01955@cwsys.cwsent.com> References: <19980226174359.3210.qmail@joshua.enteract.com> <199802270423.UAA01955@cwsys.cwsent.com> Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk < said: > crashes trying to access the VT. To get the XIG Accelerated X server > to work I've modified the patch to allow superuser to access to > character devices. The would be pointless. The whole purpose of the securelevel facility is to make it impossible for even the superuser to do certain things, so that when someone cracks root on your box, the amount of damage they can do is limited. -GAWollman -- Garrett A. Wollman | O Siem / We are all family / O Siem / We're all the same wollman@lcs.mit.edu | O Siem / The fires of freedom Opinions not those of| Dance in the burning flame MIT, LCS, CRS, or NSA| - Susan Aglukark and Chad Irschick To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe security" in the body of the message