From owner-freebsd-security Wed Sep 2 22:21:58 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id WAA16472 for freebsd-security-outgoing; Wed, 2 Sep 1998 22:21:58 -0700 (PDT) (envelope-from owner-freebsd-security@FreeBSD.ORG) Received: from shell6.ba.best.com (shell6.ba.best.com [206.184.139.137]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id WAA16466 for ; Wed, 2 Sep 1998 22:21:57 -0700 (PDT) (envelope-from jkb@best.com) Received: from localhost (jkb@localhost) by shell6.ba.best.com (8.9.0/8.9.0/best.sh) with SMTP id WAA14596; Wed, 2 Sep 1998 22:20:52 -0700 (PDT) X-Authentication-Warning: shell6.ba.best.com: jkb owned process doing -bs Date: Wed, 2 Sep 1998 22:20:51 -0700 (PDT) From: "Jan B. Koum " X-Sender: jkb@shell6.ba.best.com To: Phil Gilley cc: freebsd-security@FreeBSD.ORG Subject: Re: securelevel variable in /etc/rc.conf In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org There is one in 3.0: kern_securelevel_enable="NO" # kernel security level (see init(8)), kern_securelevel="-1" # range: -1..2 ; `-1' is the most insecure -- Yan "Twenty years from now you will be more disappointed by the things you didn't do than by the things you did do. So throw off the bowlines. Sail away from the safe harbor. Catch the trade winds in your sails. Explore. Dream. Discover." Mark Twain On Wed, 2 Sep 1998, Phil Gilley wrote: >Why isn't there a securelevel variable in /etc/rc.conf? If it's >because one should change the securelevel before /etc/rc sucks in >/etc/rc.conf, how about placing a comment in /etc/rc to the effect >of "change securelevel here." > >Phil Gilley >pgilley@metronet.com > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-security" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message