From owner-freebsd-hackers  Sun Jan 21 12: 7:55 2001
Delivered-To: freebsd-hackers@freebsd.org
Received: from mink01.tirloni.co.uk (200-191-83-228-as.acessonet.com.br [200.191.83.228])
	by hub.freebsd.org (Postfix) with ESMTP id 266C637B401
	for <freebsd-hackers@FreeBSD.org>; Sun, 21 Jan 2001 12:07:35 -0800 (PST)
Received: from mink01 (mink01 [127.0.0.1])
	by mink01.tirloni.co.uk (8.11.1/8.9.3) with ESMTP id f0LJqTR00587
	for <freebsd-hackers@FreeBSD.org>; Sun, 21 Jan 2001 17:52:30 -0200 (BRST)
	(envelope-from tirloni@techie.com)
Date: Sun, 21 Jan 2001 17:52:29 -0200 (BRST)
From: "Giovanni P. Tirloni" <tirloni@techie.com>
X-Sender: tirloni@mink01.tirloni.co.uk
To: freebsd-hackers@FreeBSD.org
Subject: Securelevel idea
Message-ID: <Pine.BSF.4.21.0101211743380.564-100000@mink01.tirloni.co.uk>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-hackers@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

Hello, 

 I was thinking about securelevels this afternoon and my brain came up
 with an idea: what about if we could set fine-grained securelevels? Like,
 each securelevel could have its own set of prohibitons and that could
 only be changed setting some option in the kernel and compiling a new
 one.

 The general idea is to give the machine's admin enough power so he/she
 can change it to his/her needs. Can anyone comment my idea ?

 Thanks in advance, 

 Giovanni P. Tirloni
 tirloni@techie.com




To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message