From owner-freebsd-security Sun Sep 9 7: 7:40 2001 Delivered-To: freebsd-security@freebsd.org Received: from gamma.root-servers.ch (gamma.root-servers.ch [195.49.62.126]) by hub.freebsd.org (Postfix) with SMTP id 9BF6F37B401 for ; Sun, 9 Sep 2001 07:07:36 -0700 (PDT) Received: (qmail 62254 invoked from network); 9 Sep 2001 14:07:31 -0000 Received: from dclient217-162-128-224.hispeed.ch (HELO athlon550) (217.162.128.224) by 0 with SMTP; 9 Sep 2001 14:07:31 -0000 Date: Sun, 9 Sep 2001 16:11:24 +0200 From: Gabriel Ambuehl X-Mailer: The Bat! (v1.53bis) Educational Organization: BUZ Internet Services X-Priority: 3 (Normal) Message-ID: <1521196904667.20010909161124@buz.ch> To: Simon Nielsen Cc: freebsd-security@FreeBSD.ORG Subject: Re[3]: Kernel-loadable Root Kits In-Reply-To: References: MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org -----BEGIN PGP SIGNED MESSAGE----- Hello Simon, Sunday, September 09, 2001, 4:05:44 PM, you wrote: >> Would you care to point out how I could lower the securelevel then >> for legitimate use (i.e. updates or changes to /etc) of the system >> by the administrators? > Reboot.. and if you set the securelevel automaticly on boot (e.g. > in rc.conf) you must start in single user mode after the reboot. Yeah I know that this would be a way to do it but it's rather hard to do with colocated servers... Best regards, Gabriel pPcȑa,K -----BEGIN PGP SIGNATURE----- Version: PGP 6.5i iQEVAwUBO5tqgMZa2WpymlDxAQFg6Af/VfKirIl5oYz3LVUakUS7Q16w/vIzL59F UFetmgbsJ8uqOVwa84ZPgJSLdeKZVt5YccCe+JO2DOHiEZrxV3vwzyEoLU5tcnv3 J3/mfhHj6hqrP8QQF61QyaurCVNOnm9ciVAJbWXWsGXQfL5DIW4vLuZg6PguoM0X 0CYoS4QDFQK9izctehwof7aurLGpeYY6GCmSMvqe+kfNFMFW3XFag6owdvmbX/DI k7eVOUFg67paOk46oSIFaXG0zTq/7dg2aNq8WrbEnWy78SSNBbomqqrjAHkWQaq6 n7Sml3BJ/ttG2M1z6Um308OyGubDwmetqro4EgFA4y9Z+W0GlC56Iw== =7aNV -----END PGP SIGNATURE----- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message