From owner-freebsd-current Wed Sep 13 22:23:28 2000 Delivered-To: freebsd-current@freebsd.org Received: from ns.internet.dk (ns.internet.dk [194.19.140.1]) by hub.freebsd.org (Postfix) with ESMTP id 797EF37B423 for ; Wed, 13 Sep 2000 22:23:24 -0700 (PDT) Received: (from uucp@localhost) by ns.internet.dk (8.9.3/8.9.3) with UUCP id HAA68572; Thu, 14 Sep 2000 07:12:58 +0200 (CEST) (envelope-from leifn@neland.dk) Received: from localhost (localhost [127.0.0.1]) by arnold.neland.dk (8.11.0/8.11.0) with ESMTP id e8E4stN34287; Thu, 14 Sep 2000 06:55:08 +0200 (CEST) (envelope-from leifn@neland.dk) Date: Thu, 14 Sep 2000 06:54:55 +0200 (CEST) From: Leif Neland To: Paul Herman Cc: Vivek Khera , freebsd-current@FreeBSD.ORG Subject: Re: call for testers: init securelevel patch In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Fri, 8 Sep 2000, Paul Herman wrote: > On Fri, 8 Sep 2000, Vivek Khera wrote: > > > >>>>> "BE" == Bruce Evans writes: > > > > BE> revision 1.9 > > BE> date: 1997/06/25 07:31:47; author: joerg; state: Exp; lines: +2 -2 > > BE> Don't ever allow lowering the securelevel at all. Allowing it does > > BE> nothing good except of opening a can of (potential or real) security > > BE> holes. People maintaining a machine with higher security requirements > > BE> need to be on the console anyway, so there's no point in not forcing > > BE> them to reboot before starting maintenance. > > > > Perhaps one of the secure level restrictions should be that you cannot > > attach to pid 1 via the debugger. > > You can't. > > Ever since Apr 1997 you couldn't attach gdb to init. > How is that done? Will gdb not attach to init, or will init not let gdb attach? If the former, then badguy can just use a custom gdb... Leif To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message