From owner-freebsd-stable  Fri Mar  1 21:57:17 2002
Delivered-To: freebsd-stable@freebsd.org
Received: from mired.org (dsl-64-192-6-133.telocity.com [64.192.6.133])
	by hub.freebsd.org (Postfix) with SMTP id 2A6DA37B402
	for <stable@freebsd.org>; Fri,  1 Mar 2002 21:57:05 -0800 (PST)
Received: (qmail 62404 invoked by uid 100); 2 Mar 2002 05:56:57 -0000
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Message-ID: <15488.27048.622072.160708@guru.mired.org>
Date: Fri, 1 Mar 2002 23:56:56 -0600
To: Rasputin <rasputin@submonkey.net>
Cc: stable@freebsd.org
Subject: Re: running securelevel 2 and X
In-Reply-To: <20020228063209.B45581@shikima.mine.nu>
References: <3C7DE275.B8DE1205@randallkunkee.com>
	<20020228063209.B45581@shikima.mine.nu>
X-Mailer: VM 6.90 under 21.1 (patch 14) "Cuyahoga Valley" XEmacs Lucid
X-face: "5Mnwy%?j>IIV\)A=):rjWL~NB2aH[}Yq8Z=u~vJ`"(,&SiLvbbz2W`;h9L,Yg`+vb1>RG%
 *h+%X^n0EZd>TM8_IB;a8F?(Fb"lw'IgCoyM.[Lg#r\
From: "Mike Meyer" <mwm-dated-1015480617.7b3860@mired.org>
X-Delivery-Agent: TMDA/0.48 (Python 2.2 on freebsd4)
Sender: owner-freebsd-stable@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-stable.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-stable>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-stable>
X-Loop: FreeBSD.ORG

Rasputin <rasputin@submonkey.net> types:
> > Perhaps I have a conflict of interest.  I want to run X and be secure.
> > Is running X such a big gaping security hole that I'm left with my
> > current solution (to restart X, I must reboot!)?  
> In a word, yes. X needed direct access to /dev/io last time I looked.

From all of this, it seems that the init man page is out of
date. Unless there's *another* place outside of /usr/src that document
what the securelevels do, as init(8) man page doesn't anything about
/dev/io. All it really talks about are disks.

If that's the case, could someone please either 1) fix the init(8) man
page to describe this, or 2) describe it to me, so I can submit a PR
that does 1.

	Thanx,
	<mike
--
Mike Meyer <mwm@mired.org>			http://www.mired.org/home/mwm/
Independent WWW/Perforce/FreeBSD/Unix consultant, email for more information.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message