From owner-cvs-all@FreeBSD.ORG Mon Aug 2 11:46:02 2004 Return-Path: Delivered-To: cvs-all@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 39ADE16A4CE for ; Mon, 2 Aug 2004 11:46:02 +0000 (GMT) Received: from kaiser.sig11.org (host236-153.pool8250.interbusiness.it [82.50.153.236]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5C9F743D5C for ; Mon, 2 Aug 2004 11:46:01 +0000 (GMT) (envelope-from rionda@riondato.com) Received: by kaiser.sig11.org (Postfix, from userid 1000) id 3A1E0164; Mon, 2 Aug 2004 13:46:16 +0200 (CEST) From: Matteo Riondato To: cvs-all@FreeBSD.org In-Reply-To: References: <200408011140.i71BesOt070889@repoman.freebsd.org> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-NFvTgzRHFpxf4Yd54VUR" Message-Id: <1091447175.2201.48.camel@kaiser.sig11.org> Mime-Version: 1.0 X-Mailer: Ximian Evolution 1.4.6 Date: Mon, 02 Aug 2004 13:46:15 +0200 cc: Dag-Erling =?ISO-8859-1?Q?Sm=F8rgrav?= Subject: Re: cvs commit: src/sys/alpha/alpha mem.c src/sys/alpha/confmem.c memdev.h src/sys/conf NOTES files files.alpha files.amd64 ... X-BeenThere: cvs-all@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: CVS commit messages for the entire tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 02 Aug 2004 11:46:02 -0000 --=-NFvTgzRHFpxf4Yd54VUR Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Dag-Erling Sm=F8rgrav wrote: > Mark Murray writes: > > Log: > > Break out the MI part of the /dev/[k]mem and /dev/io drivers into > > their own directory and module, leaving the MD parts in the MD > > area (the MD parts _are_ part of the modules). /dev/mem and /dev/io > > are now loadable modules, thus taking us one step further towards > > a kernel created entirely out of modules. Of course, there is nothing > > preventing the kernel from having these statically compiled. >=20 > The other good news of course is that it is now possible to build a > kernel that does not have /dev/mem and /dev/io - that's pretty > significant from a security point of view. Thanks! Can you please explain why it's signficant? Thanks. --=20 Rionda aka Matteo Riondato GUFI Staff Member (http://www.gufi.org) BSD-FAQ-it Main Developer (http://www.gufi.org/~rionda) FreeSBIE BugMeister (http://www.freesbie.org) GPG key at: http://www.riondabsd.net/riondagpg.asc Sent from: kaiser.sig11.org running FreeBSD-5.2-CURRENT --=-NFvTgzRHFpxf4Yd54VUR Content-Type: application/pgp-signature; name=signature.asc Content-Description: Questa parte del messaggio =?ISO-8859-1?Q?=E8?= firmata -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (FreeBSD) iD8DBQBBDimH2Mp4pR7Fa+wRAi3wAKDI8pGQbMdf0DDxNDf87q2YR1/s3QCeN8bs IBA50F6THpbSzJGSHViUUxQ= =Efhc -----END PGP SIGNATURE----- --=-NFvTgzRHFpxf4Yd54VUR--