From owner-freebsd-security Sat May 22 6:58:29 1999 Delivered-To: freebsd-security@freebsd.org Received: from mx01.iafrica.com.na (mx01.iafrica.com.na [196.31.227.173]) by hub.freebsd.org (Postfix) with ESMTP id DC34F151F5 for ; Sat, 22 May 1999 06:58:17 -0700 (PDT) (envelope-from tim@iafrica.com.na) Received: from dup85-whk.iafrica.com.na ([196.20.4.154] helo=aptiva) by mx01.iafrica.com.na with smtp (Exim 2.11 #1) id 10lCHW-000GpI-00; Sat, 22 May 1999 14:57:43 +0100 Message-ID: <3746B829.E60@iafrica.com.na> Date: Sat, 22 May 1999 15:59:05 +0200 From: Tim Priebe Reply-To: tim@iafrica.com.na X-Mailer: Mozilla 3.01 (Win95; I) MIME-Version: 1.0 To: wkt@cs.adfa.edu.au Cc: security@freebsd.org Subject: Re: Lowering securelevel from console? References: <199905210635.QAA10497@henry.cs.adfa.edu.au> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Warren Toomey wrote: > > Hi all, > I'm sure this has been discussed before, I've hit the list browse > web engine with no good results, so... > > I think that being able to lower the securelevel as root from the console > would be a good idea, rather than having to go to single-user mode to make > changes as required. > > I know the current code in kern_mib.c doesn't do this. I'm expecting > comments back saying that it's not a good idea, you're still net connected. > Assume I've ifconfig'd all interfaces down :-) > > Now, are there any other reasons why lowering securelevel as root from > the console (and no net connectivity) would be a BAD thing? If the system is multi-user with terminals or modems attached, you have just removed the security, with the possibility of having users connected. Further, if someone knows you lower your secure level without changing to single user mode, they could set a program running that waits for the secure level to change, and then does its damage. For the systems I run in secure mode, I want to know that it only comes out of secure mode, when switched to single user mode. Tim. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message