Date: Tue, 17 Sep 2002 16:40:50 +0200 From: Jimmy Lantz <jimmy.lantz@lusidor.com> To: Lowell Gilbert <freebsd-questions-local@be-well.no-ip.com> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: mount read only || chflags schg & sec level 2 Message-ID: <5.1.0.14.0.20020917163853.03366920@mail.lusidor.com> In-Reply-To: <44ptvcu3dt.fsf@be-well.ilk.org> References: <5.1.0.14.0.20020917103713.032c3950@mail.lusidor.nu> <5.1.0.14.0.20020917103713.032c3950@mail.lusidor.nu>
next in thread | previous in thread | raw e-mail | index | archive | help
At 09:55 2002-09-17 -0400, you wrote: >Jimmy Lantz <jimmy.lantz@lusidor.com> writes: > > > I'm looking for away to write protect > > some files whats the pros and cons > > with having the file on a seperate partition and mount that read-only > > or use the chflags schg and go to kernel security level 2? > >*Either* way you probably want to raise the security level. A >read-only mount doesn't help if it can be re-mounted writeable. If >the files *have* to be in the same directory with writeable files (as >for many systems is true of /etc), schg can be a very good solution. What files in /etc needs to be writeable? I was just thinking mounting it read-only. >If the files aren't part of the standard system at all, then as >someone else suggested, write-only media are an easy answer. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5.1.0.14.0.20020917163853.03366920>