From owner-freebsd-questions@FreeBSD.ORG  Thu Nov 25 18:09:45 2004
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 000B616A4CE
	for <freebsd-questions@freebsd.org>;
	Thu, 25 Nov 2004 18:09:44 +0000 (GMT)
Received: from wproxy.gmail.com (wproxy.gmail.com [64.233.184.203])
	by mx1.FreeBSD.org (Postfix) with ESMTP id A640843D1D
	for <freebsd-questions@freebsd.org>;
	Thu, 25 Nov 2004 18:09:44 +0000 (GMT)
	(envelope-from joshua.lokken@gmail.com)
Received: by wproxy.gmail.com with SMTP id 68so530428wra
	for <freebsd-questions@freebsd.org>;
	Thu, 25 Nov 2004 10:09:44 -0800 (PST)
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws;
	s=beta; d=gmail.com;
	h=received:message-id:date:from:reply-to:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:references;
	b=aBub9kabQ8vysrjqU3Qs1sy2ukiRl/lgqx5WFKxYeKsCDRLG9DQBPh02ZrqRu4aloAawuGtLLOpKLb10I2hBJkVIBX80+AJ6wAt1JyEezVBSR0h1D8Hzzecc2KsZKTpgMaX/KLOtNQjessDl4HavpFTM2FmK1ikz21PfoFClg98=
Received: by 10.54.53.79 with SMTP id b79mr435030wra;
        Thu, 25 Nov 2004 10:09:41 -0800 (PST)
Received: by 10.54.11.34 with HTTP; Thu, 25 Nov 2004 10:09:40 -0800 (PST)
Message-ID: <bc5b638504112510091da419c6@mail.gmail.com>
Date: Thu, 25 Nov 2004 12:09:40 -0600
From: Joshua Lokken <joshua.lokken@gmail.com>
To: "J.D. Bronson" <jbronson@wixb.com>
In-Reply-To: <6.2.0.14.2.20041125093752.00c0a358@cheyenne.wixb.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
References: <6.2.0.14.2.20041125093752.00c0a358@cheyenne.wixb.com>
cc: freebsd-questions@freebsd.org
Subject: Re: securelevel 2
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
Reply-To: Joshua Lokken <joshua.lokken@gmail.com>
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Nov 2004 18:09:45 -0000

On Thu, 25 Nov 2004 09:39:48 -0600, J.D. Bronson <jbronson@wixb.com> wrote:
> I want to make sure that this is the case...
> 
> When I am in kernel secure level '2' - I cannot even mount
> a partiton on the second disk?
>
> Is this expected?

I think so...

[from man securelevel, or man init(8)]

2	   Highly secure mode - same as secure mode, plus disks may not be
	   opened for writing (except by mount(2)) whether mounted or not.
	   This level precludes tampering with file systems by unmounting
	   them, but also inhibits running newfs(8) while the system is multi-
	   user.


 
-- 
Joshua Lokken
Open Source Advocate