Date: Mon, 15 Jun 1998 16:13:23 -0500 From: greeves <sysadmin@mfn.org> To: "security@FreeBSD.ORG" <security@FreeBSD.ORG> Subject: RE: bsd securelevels... Message-ID: <01BD9878.85D2BCC0@greeves.mfn.org>
next in thread | raw e-mail | index | archive | help
>> 1) do they noticably improve security? 2) can we replace them with >> something better? The answer to both questions is yes. >The answer to (1) is yes only as long as people are using >securelevels. My feeling is that pretty much noone is using them, >because they are viewed (rightfully, IMO) as being both too twisted >and not secure enough to justify setting them. More likely nobody is using them because they are not now known, and are not being pushed. I run a network that *would* have been using them, had I *KNOWN* about them! Remember, a great deal of the FBSD world is *NOT* on the edge of the technology, and that includes the more "advanced" users who came from different *nix environments (such as myself). I came to FBSD out from a commercial SVR3/4 environment that did not have anything like secure levels. Even though I came here *because* of heightened security awareness, the fact that I still know only as much about securelevels as has been posted in the recent spate of warnings on it. Possibly someone should generate a little verbiage in the FAQ about this! J.A. Terranson sysadmin@mfn.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?01BD9878.85D2BCC0>