From owner-freebsd-security Fri Jun 18 23: 6: 8 1999 Delivered-To: freebsd-security@freebsd.org Received: from beach.silcom.com (beach.silcom.com [199.201.128.19]) by hub.freebsd.org (Postfix) with ESMTP id EE57515236 for ; Fri, 18 Jun 1999 23:06:04 -0700 (PDT) (envelope-from brian@CSUA.Berkeley.EDU) Received: from smarter.than.nu (pm0-8.vpop1.avtel.net [207.71.237.8]) by beach.silcom.com (Postfix) with ESMTP id ACEA9906; Fri, 18 Jun 1999 23:05:46 -0700 (PDT) Date: Fri, 18 Jun 1999 23:05:46 -0700 (PDT) From: "Brian W. Buchanan" X-Sender: brian@smarter.than.nu To: Frank Tobin Cc: FreeBSD-security Mailing List Subject: Re: proposed secure-level 4 patch In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sat, 19 Jun 1999, Frank Tobin wrote: > Okay, a good friend of mine Kris Wehner has written a patch to implement > the proposed securelevel of 4, which would disallow the opening of > secure ports (<1024) while in the securelevel of 4. The patch is against > 3.2-STABLE kernel, as of within 12 hours. I'd like to hear more comments > before I send it as a send-pr. The patch is attached. Kris's patch blocks binding ports <= 1024, but 1024 is not a secure port. The last one is 1023. -- Brian Buchanan brian@CSUA.Berkeley.EDU -------------------------------------------------------------------------- FreeBSD - The Power to Serve! http://www.freebsd.org daemon(n): 1. an attendant power or spirit : GENIUS 2. the cute little mascot of the FreeBSD operating system To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message