From owner-freebsd-hackers Mon Sep 6 21:21:47 1999 Delivered-To: freebsd-hackers@freebsd.org Received: from apollo.backplane.com (apollo.backplane.com [209.157.86.2]) by hub.freebsd.org (Postfix) with ESMTP id 370D71560B; Mon, 6 Sep 1999 21:21:40 -0700 (PDT) (envelope-from dillon@apollo.backplane.com) Received: (from dillon@localhost) by apollo.backplane.com (8.9.3/8.9.1) id VAA77483; Mon, 6 Sep 1999 21:20:55 -0700 (PDT) (envelope-from dillon) Date: Mon, 6 Sep 1999 21:20:55 -0700 (PDT) From: Matthew Dillon Message-Id: <199909070420.VAA77483@apollo.backplane.com> To: Greg Black Cc: Dag-Erling Smorgrav , KATO Takenori , bde@zeta.org.au, freebsd-hackers@FreeBSD.ORG, freebsd-security@FreeBSD.ORG Subject: Re: Init(8) cannot decrease securelevel References: <199909060513.PAA12402@godzilla.zeta.org.au> <19990906142342F.kato@gneiss.eps.nagoya-u.ac.jp> <199909061539.IAA74893@apollo.backplane.com> <19990906204930.14319.qmail@alice.gba.oz.au> Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG :> Though, as a side note, it should be noted that if you have DDB :> enabled then lowering the secure level is pretty easy to do. If you :> have access to the console, of course. : :It should also be noted that it makes no sense to enable DDB on :systems that need to use elevated securelevels. : :-- :Greg Black -- I disagree quite strongly. DDB provides a mechanism to allow a sysadmin to obtain a greater amount of information from a panic situation then he could get otherwise. Being able to obtain this information does not run counter to running with a raised securelevel. If the system winds up in a state where a kernel core cannot be generated, DDB is the only way to figure out what is going on. securelevel is a mechanism which attempts to guarentee data security, at least to a degree. These two items do not clash. -Matt Matthew Dillon To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message