Date: Wed, 11 Feb 2004 15:28:25 +0100 (CET) From: roberto@redix.it To: "tilo KREMER" <spam.spam@hfbk-hamburg.de> Cc: freebsd-security@freebsd.org Subject: Re: Question about securelevel Message-ID: <1275.192.168.0.77.1076509705.squirrel@mail.redix.it> In-Reply-To: <402A3118.7070905@hfbk-hamburg.de> References: <1171.192.168.0.77.1076505166.squirrel@mail.redix.it> <402A3118.7070905@hfbk-hamburg.de>
next in thread | previous in thread | raw e-mail | index | archive | help
> > you do not need to go single user to change it. just remove the > securelevel lines from /etc/rc.conf and reboot. > > greetings, > tilo > As said, the root filesystem is read-only and the command "mount -uw /" should be in disabled when securelevel==3, in my ideal kernel. Actually the command "mount -uw /" will succeded when the securelevel==3, but supposing should be not so difficult to change the FreeBSD kernel, this (securelevel+readonly filesystem) could address the weakness of securelevel+non-read-only filesystem. Regards Roberto
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1275.192.168.0.77.1076509705.squirrel>