Site Navigation

Date:      Fri, 18 May 2018 09:48:02 -0400
From:      Allan Jude <allanjude@freebsd.org>
To:        freebsd-jail@freebsd.org
Subject:   Re: rc.conf kld_list vs kern.securelevel
Message-ID:  <d6295dfb-2764-5438-670f-f2dedefd6a3e@freebsd.org>
In-Reply-To: <CAPS9%2BSuj=nKeePbC0M3c=YZECGCAowLhtO_GXDAKt_qJf6sXmA@mail.gmail.com>
References:  <CAPS9%2BSuj=nKeePbC0M3c=YZECGCAowLhtO_GXDAKt_qJf6sXmA@mail.gmail.com>

---

next in thread | previous in thread | raw e-mail | index | archive | help

---

This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--FhzckGNiZVS9FNjG4MBOHAUMp00nYKxZj
Content-Type: multipart/mixed; boundary="ZzRhyTPxTBY9Mkn80w2KObk5ISZAkvBdn";
 protected-headers="v1"
From: Allan Jude <allanjude@freebsd.org>
To: freebsd-jail@freebsd.org
Message-ID: <d6295dfb-2764-5438-670f-f2dedefd6a3e@freebsd.org>
Subject: Re: rc.conf kld_list vs kern.securelevel
References: <CAPS9+Suj=nKeePbC0M3c=YZECGCAowLhtO_GXDAKt_qJf6sXmA@mail.gmail.com>
In-Reply-To: <CAPS9+Suj=nKeePbC0M3c=YZECGCAowLhtO_GXDAKt_qJf6sXmA@mail.gmail.com>

--ZzRhyTPxTBY9Mkn80w2KObk5ISZAkvBdn
Content-Type: text/plain; charset=utf-8
Content-Language: en-US
Content-Transfer-Encoding: quoted-printable

On 2018-05-18 07:04, Andreas Nilsson wrote:
> Hello,
>=20
> I recently configured a system where kern.securelevel=3D1 would be good=
, but
> noticed that modules listed in kld_list in rc.conf is then not loaded.
> Would it not be a good to either explicitly state that kld_list cannot =
be
> used with kern.securelevel, or have kld run before sysctl?
>=20
> Best regards
> Andreas
> _______________________________________________
> freebsd-jail@freebsd.org mailing list
> https://lists.freebsd.org/mailman/listinfo/freebsd-jail
> To unsubscribe, send any mail to "freebsd-jail-unsubscribe@freebsd.org"=

>=20

It would seem that kld_list would need to be loaded before sysctl run
anyway, since the sysctl you are trying to set might not exist until the
kernel modules are loaded. Is the securelevel actually set by the sysctl
service?

--=20
Allan Jude


--ZzRhyTPxTBY9Mkn80w2KObk5ISZAkvBdn--

--FhzckGNiZVS9FNjG4MBOHAUMp00nYKxZj
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.22 (MingW32)

iQIcBAEBAgAGBQJa/tmaAAoJEBmVNT4SmAt+QPQQAKeagrzZPKl2SyflLjBTXVmu
0S+JuuLgKNr0e0QG528wfF9ZuT2fBJIlP4M+M4e52Z8Cmh0DdmmKBqalMoMECLmk
q/iYBMfPZqqXEWy5s/uewBHx/WyjXMMb95Daz8ri4iFQI2wjwTnXqMiJOCbfXXAg
RsSjHeh1luERMnvxmscsOqZad+A33GVfzUii+uIWWdO77In6kusjHrWRyFpnEsvL
mDU8i9+0Tl6fDMymxXZZPVrBJrgCQC+GIqYIlG+v6onW8RSu5psqf9qD0pbDhLSn
bX3mhigB64BL/JQvFWJuC6vr4uWipLNFceIbG6adGvs4bYmwGA2wEqUpQt3onEm6
DIntCd+PWT1v+aZ60VUi+1pFC1bS0Z1plRapOEkKv3XbHfjpj5Gtx7ZEY7920zh3
1CGZnct7I3BTKQzYWAATiCYInrV3/KZXBO0DnLDw5PQi45Qf8CqAvGCKuaNObSGY
NQxCE8FkoiqlyGb7NcN6R01DUHmdOnYa9rlWbgLcLNNTwit7k+gX4cg8nhVgmEC0
XkSR/4Xx40PRsmgHfccte1+EiarmhLrdjUH9sT+7oc8nryWG/+c/r0AuLN/xcz1M
7nCoed330NwpDpWIKruet1bXnE6qdOozMThS9lhHipxAhuvPndMvkqNmZ1agVjFA
xJ7PLMckTxAXnpag1YZ3
=t096
-----END PGP SIGNATURE-----

--FhzckGNiZVS9FNjG4MBOHAUMp00nYKxZj--

---

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?d6295dfb-2764-5438-670f-f2dedefd6a3e>

Legal Notices | © 1995-2025 The FreeBSD Project. All rights reserved.

Contact