Date: Tue, 12 Sep 2000 08:09:56 +0200 (CEST) From: Paul Herman <pherman@frenchfries.net> To: freebsd-security@FreeBSD.ORG Subject: init securelevel 1 -> 0, dangerous? Message-ID: <Pine.BSF.4.21.0009120758260.320-100000@bagabeedaboo.security.at12.de>
next in thread | raw e-mail | index | archive | help
Hi, Does anyone know of any dangers of letting init lower the securelevel to zero for single user mode? What I already know is that allowing gdb to attach (via ptrace(2)) to init (to trick it into lowering securelevel) is forbiden in kern/sys_process.c (or kern/kern_prot.c in -CURRENT) I asked -hackers and -current a week ago, but got no concrete answers, so I thought I'd ask one last time on -security. There is an open PR on this... Ideas? -Paul. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0009120758260.320-100000>