From owner-freebsd-security@FreeBSD.ORG Wed Nov 8 08:12:30 2006 Return-Path: X-Original-To: freebsd-security@freebsd.org Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7C43416A47E for ; Wed, 8 Nov 2006 08:12:30 +0000 (UTC) (envelope-from alexander@leidinger.net) Received: from redbull.bpaserver.net (redbullneu.bpaserver.net [213.198.78.217]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1A89E43D6D for ; Wed, 8 Nov 2006 08:12:28 +0000 (GMT) (envelope-from alexander@leidinger.net) Received: from outgoing.leidinger.net (p54A5FE6A.dip.t-dialin.net [84.165.254.106]) by redbull.bpaserver.net (Postfix) with ESMTP id 27A7E2E14B; Wed, 8 Nov 2006 09:12:20 +0100 (CET) Received: from webmail.leidinger.net (webmail.Leidinger.net [192.168.1.102]) by outgoing.leidinger.net (Postfix) with ESMTP id 36ED55B4C35; Wed, 8 Nov 2006 09:12:18 +0100 (CET) Received: (from www@localhost) by webmail.leidinger.net (8.13.8/8.13.8/Submit) id kA88CHVg054310; Wed, 8 Nov 2006 09:12:17 +0100 (CET) (envelope-from Alexander@Leidinger.net) Received: from pslux.cec.eu.int (pslux.cec.eu.int [158.169.9.14]) by webmail.leidinger.net (Horde MIME library) with HTTP; Wed, 08 Nov 2006 09:12:17 +0100 Message-ID: <20061108091217.62b3er5uyogs4wkw@webmail.leidinger.net> X-Priority: 3 (Normal) Date: Wed, 08 Nov 2006 09:12:17 +0100 From: Alexander Leidinger To: Wes Peters References: <20061104163000.30D2516A7A6@hub.freebsd.org> <0C344F30-40A1-4B08-A1C7-3F8CD536244D@opensail.org> <20061108082233.agry96udb4k0sckk@webmail.leidinger.net> <1794F6F9-3F65-4771-ACF6-23D00101B72D@opensail.org> In-Reply-To: <1794F6F9-3F65-4771-ACF6-23D00101B72D@opensail.org> MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8; DelSp="Yes"; format="flowed" Content-Disposition: inline Content-Transfer-Encoding: quoted-printable User-Agent: Internet Messaging Program (IMP) H3 (4.1.3) / FreeBSD-7.0 X-BPAnet-MailScanner-Information: Please contact the ISP for more information X-BPAnet-MailScanner: Found to be clean X-BPAnet-MailScanner-SpamCheck: not spam, SpamAssassin (not cached, score=-1.763, required 6, BAYES_00 -2.60, DK_POLICY_SIGNSOME 0.00, FORGED_RCVD_HELO 0.14, J_CHICKENPOX_54 0.60, J_CHICKENPOX_84 0.60, SMILEY -0.50) X-BPAnet-MailScanner-From: alexander@leidinger.net X-Spam-Status: No X-Mailman-Approved-At: Wed, 08 Nov 2006 12:54:42 +0000 Cc: freebsd-security@freebsd.org Subject: Re: freebsd-security Digest, Vol 184, Issue 2 X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 08 Nov 2006 08:12:30 -0000 Quoting Wes Peters (from Tue, 7 Nov 2006 23:28:15 -0800): > > On Nov 7, 2006, at 11:22 PM, Alexander Leidinger wrote: > >> Quoting Wes Peters (from Tue, 7 Nov 2006 20:19:40 -080= 0): >> >>> --- /etc/rc.d/dmesg Sat May 6 21:00:26 2006 >>> +++ dmesg Tue Nov 7 20:17:47 2006 >>> @@ -19,8 +19,10 @@ >>> do_dmesg() >>> { >>> - rm -f ${dmesg_file} >>> + mv -f ${dmesg_file} ${dmesg_file}.prev >>> ( umask 022 ; /sbin/dmesg $rc_flags > ${dmesg_file} ) >>> + cmp -s ${dmesg_file} ${dmesg_file}.prev || \ >>> + logger -p security.warn 'dmesg.boot changed from >>> previous boot' >>> } >>> load_rc_config $name >>> >>> >>> If you like that, I'm willing to discuss it further, and/or commit it >>> and let the howling tell if it's a keeper or not. ;^) >> >> Did you try this? I didn't, but I would expect to see this message =20 >> _every time_ (because of minor timecounter rate changes). > > Yes, but only once, and then forced a change by re-running it. Maybe I > just got 'lucky.' Feel free to suggest 'better' tests, or parts to > throw out of dmesg.boot before the test. The ACPI-fast, ACPI-safe, TSC and i8xxx timecounter frequency needs to =20 be removed IMO. Sometimes I also see a very small change in the probe =20 order... but I don't remember exacly what's changing and what's =20 causing it. Bye, Alexander. --=20 The days are all empty and the nights are unreal. http://www.Leidinger.net Alexander @ Leidinger.net: PGP ID =3D B0063FE7 http://www.FreeBSD.org netchild @ FreeBSD.org : PGP ID =3D 72077137