From owner-freebsd-current Fri Sep 8 8:25: 9 2000 Delivered-To: freebsd-current@freebsd.org Received: from mail2.netcologne.de (mail2.netcologne.de [194.8.194.103]) by hub.freebsd.org (Postfix) with ESMTP id 2FD0837B505 for ; Fri, 8 Sep 2000 08:25:05 -0700 (PDT) Received: from bagabeedaboo.security.at12.de (dial-213-168-64-62.netcologne.de [213.168.64.62]) by mail2.netcologne.de (8.9.3/8.9.3) with ESMTP id RAA26087; Fri, 8 Sep 2000 17:25:02 +0200 (MET DST) Received: from localhost (localhost.security.at12.de [127.0.0.1]) by bagabeedaboo.security.at12.de (8.11.0/8.11.0) with ESMTP id e88FOqf00461; Fri, 8 Sep 2000 17:24:52 +0200 (CEST) (envelope-from pherman@frenchfries.net) Date: Fri, 8 Sep 2000 17:24:52 +0200 (CEST) From: Paul Herman To: Vivek Khera Cc: freebsd-current@FreeBSD.ORG Subject: Re: call for testers: init securelevel patch In-Reply-To: <14776.61431.463710.288320@onceler.kciLink.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Fri, 8 Sep 2000, Vivek Khera wrote: > >>>>> "BE" == Bruce Evans writes: > > BE> revision 1.9 > BE> date: 1997/06/25 07:31:47; author: joerg; state: Exp; lines: +2 -2 > BE> Don't ever allow lowering the securelevel at all. Allowing it does > BE> nothing good except of opening a can of (potential or real) security > BE> holes. People maintaining a machine with higher security requirements > BE> need to be on the console anyway, so there's no point in not forcing > BE> them to reboot before starting maintenance. > > Perhaps one of the secure level restrictions should be that you cannot > attach to pid 1 via the debugger. You can't. Ever since Apr 1997 you couldn't attach gdb to init. -Paul. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message