Date: Tue, 19 Dec 2000 11:49:36 -0800 From: "Crist J. Clark" <cjclark@reflexnet.net> To: freebsd-security@freebsd.org Subject: Read-Only Filesystems Message-ID: <20001219114936.A23819@rfx-64-6-211-149.users.reflexco>
next in thread | raw e-mail | index | archive | help
I was recently playing around with the idea of having a read-only root filesystem. However, it has become clear that there is no way to prevent root from changing the mount properties on any filesystem, including the root filesystem, provided there is no hardware-level block on writing and there is someplace (anyplace) where root can write. Is that accurate? I guess one must go to a "trusted OS" to get that type of functionality? -- Crist J. Clark cjclark@alum.mit.edu To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20001219114936.A23819>