From owner-freebsd-hackers  Mon Sep  6  2:15:16 1999
Delivered-To: freebsd-hackers@freebsd.org
Received: from flood.ping.uio.no (flood.ping.uio.no [129.240.78.31])
	by hub.freebsd.org (Postfix) with ESMTP
	id CD9A114DE6; Mon,  6 Sep 1999 02:15:12 -0700 (PDT)
	(envelope-from des@flood.ping.uio.no)
Received: (from des@localhost)
	by flood.ping.uio.no (8.9.3/8.9.3) id LAA21387;
	Mon, 6 Sep 1999 11:13:49 +0200 (CEST)
	(envelope-from des)
To: KATO Takenori <kato@ganko.eps.nagoya-u.ac.jp>
Cc: bde@zeta.org.au, freebsd-hackers@FreeBSD.ORG,
	freebsd-security@FreeBSD.ORG
Subject: Re: Init(8) cannot decrease securelevel
References: <199909060513.PAA12402@godzilla.zeta.org.au> <19990906142342F.kato@gneiss.eps.nagoya-u.ac.jp>
From: Dag-Erling Smorgrav <des@flood.ping.uio.no>
Date: 06 Sep 1999 11:13:48 +0200
In-Reply-To: KATO Takenori's message of "Mon, 06 Sep 1999 14:23:42 +0900"
Message-ID: <xzp1zcco10z.fsf@flood.ping.uio.no>
Lines: 11
X-Mailer: Gnus v5.5/Emacs 19.34
Sender: owner-freebsd-hackers@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

KATO Takenori <kato@ganko.eps.nagoya-u.ac.jp> writes:
>   The kernel runs with four different levels of security.
> ! Any super-user process can raise the security level, but no process
>   can lower it.

How about "The security level can only be raised by the super-user,
and cannot be lowered by anyone." instead?

DES
-- 
Dag-Erling Smorgrav - des@flood.ping.uio.no


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message