From owner-freebsd-hackers  Thu Feb 14 11:20:57 2002
Delivered-To: freebsd-hackers@freebsd.org
Received: from mx01-a.netapp.com (mx01-a.netapp.com [198.95.226.53])
	by hub.freebsd.org (Postfix) with ESMTP id C325437B417
	for <freebsd-hackers@FreeBSD.ORG>; Thu, 14 Feb 2002 11:20:53 -0800 (PST)
Received: from frejya.corp.netapp.com (frejya [10.10.20.91])
	by mx01-a.netapp.com (8.11.1/8.11.1/NTAP-1.2) with ESMTP id g1EJKg325235;
	Thu, 14 Feb 2002 11:20:42 -0800 (PST)
Received: from orbit-fe.eng (localhost [127.0.0.1])
	by frejya.corp.netapp.com (8.12.2/8.12.2/NTAP-1.4) with ESMTP id g1EJKfsS019080;
	Thu, 14 Feb 2002 11:20:42 -0800 (PST)
Received: from localhost (kmacy@localhost)
	by orbit-fe.eng (8.10.2+Sun/8.10.2) with ESMTP id g1EJKfN13753;
	Thu, 14 Feb 2002 11:20:41 -0800 (PST)
Date: Thu, 14 Feb 2002 11:20:40 -0800 (PST)
From: Kip Macy <kmacy@netapp.com>
To: "PSI, Mike Smith" <mlsmith@mitre.org>
Cc: freebsd-hackers@FreeBSD.ORG
Subject: Re: Kernel after halt issued
In-Reply-To: <3C6C0965.206509B4@mitre.org>
Message-ID: <Pine.GSO.4.10.10202141119180.12277-100000@orbit>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-hackers@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-hackers.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-hackers>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-hackers>
X-Loop: FreeBSD.ORG

This has already been discussed (link off of Slashdot) and works under linux for 
packet filtering. I have no idea if it could be done under FreeBSD.

				-Kip

On Thu, 14 Feb 2002, PSI, Mike Smith wrote:

> I just heard someone say that they believed that the kernel was still
> running after a halt is issued, but just cannot (won't?) create any
> processes. So while I realize this person may not know what they are
> talking about (and am showing my own ignorance for even listening), the
> question is...
> 
> Is the kernel still running after a halt?
> 
> If it is, then there are very interesting possibilities for building in
> very specific capabilities in the kernel, then under "halt" condition
> have those capabilities available. AND NOTHING ELSE! Interesting from a
> security standpoint. Plus it would not require to to strip your system
> down to bare bones to eliminate holes. You could bring it up to a fully
> capable system at any time it was necessary.
> 
> So Is the kernel still running after a halt? If so, has anyone found a
> way to take advantage of this?
> 
> (Not THE) Mike Smith
> 
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-hackers" in the body of the message
> 


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message