From owner-freebsd-security Mon Sep 6 2:15:16 1999 Delivered-To: freebsd-security@freebsd.org Received: from flood.ping.uio.no (flood.ping.uio.no [129.240.78.31]) by hub.freebsd.org (Postfix) with ESMTP id CD9A114DE6; Mon, 6 Sep 1999 02:15:12 -0700 (PDT) (envelope-from des@flood.ping.uio.no) Received: (from des@localhost) by flood.ping.uio.no (8.9.3/8.9.3) id LAA21387; Mon, 6 Sep 1999 11:13:49 +0200 (CEST) (envelope-from des) To: KATO Takenori Cc: bde@zeta.org.au, freebsd-hackers@FreeBSD.ORG, freebsd-security@FreeBSD.ORG Subject: Re: Init(8) cannot decrease securelevel References: <199909060513.PAA12402@godzilla.zeta.org.au> <19990906142342F.kato@gneiss.eps.nagoya-u.ac.jp> From: Dag-Erling Smorgrav Date: 06 Sep 1999 11:13:48 +0200 In-Reply-To: KATO Takenori's message of "Mon, 06 Sep 1999 14:23:42 +0900" Message-ID: Lines: 11 X-Mailer: Gnus v5.5/Emacs 19.34 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org KATO Takenori writes: > The kernel runs with four different levels of security. > ! Any super-user process can raise the security level, but no process > can lower it. How about "The security level can only be raised by the super-user, and cannot be lowered by anyone." instead? DES -- Dag-Erling Smorgrav - des@flood.ping.uio.no To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message