From owner-freebsd-stable@FreeBSD.ORG  Wed Jul 12 18:14:45 2006
Return-Path: <owner-freebsd-stable@FreeBSD.ORG>
X-Original-To: freebsd-stable@FreeBSD.org
Delivered-To: freebsd-stable@FreeBSD.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id D938E16A4DF;
	Wed, 12 Jul 2006 18:14:45 +0000 (UTC)
	(envelope-from keramida@FreeBSD.org)
Received: from igloo.linux.gr (igloo.linux.gr [62.1.205.36])
	by mx1.FreeBSD.org (Postfix) with ESMTP id BD25F43D55;
	Wed, 12 Jul 2006 18:14:35 +0000 (GMT)
	(envelope-from keramida@FreeBSD.org)
Received: from gothmog.pc (host5.bedc.ondsl.gr [62.103.39.229])
	(authenticated bits=128)
	by igloo.linux.gr (8.13.7/8.13.7/Debian-1) with ESMTP id k6CIEMQa029850
	(version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT);
	Wed, 12 Jul 2006 21:14:22 +0300
Received: from gothmog.pc (gothmog [127.0.0.1])
	by gothmog.pc (8.13.7/8.13.7) with ESMTP id k6CIEGja038993;
	Wed, 12 Jul 2006 21:14:16 +0300 (EEST)
	(envelope-from keramida@FreeBSD.org)
Received: (from giorgos@localhost)
	by gothmog.pc (8.13.7/8.13.7/Submit) id k6CIEGu6038992;
	Wed, 12 Jul 2006 21:14:16 +0300 (EEST)
	(envelope-from keramida@FreeBSD.org)
Date: Wed, 12 Jul 2006 21:14:16 +0300
From: Giorgos Keramidas <keramida@FreeBSD.org>
To: Alexandros Kosiaris <akosiaris@gmail.com>
Message-ID: <20060712181416.GB38615@gothmog.pc>
References: <cee728a70607120547q51b3e45flfe22716fd28b8c83@mail.gmail.com>
	<20060712141153.GB30855@gothmog.pc>
	<cee728a70607121035k39efb17co41825fb18674b176@mail.gmail.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <cee728a70607121035k39efb17co41825fb18674b176@mail.gmail.com>
X-Hellug-MailScanner: Found to be clean
X-Hellug-MailScanner-SpamCheck: not spam, SpamAssassin (score=-4.353,
	required 5, autolearn=not spam, ALL_TRUSTED -1.80, AWL 0.05,
	BAYES_00 -2.60)
X-Hellug-MailScanner-From: keramida@freebsd.org
X-Spam-Status: No
Cc: freebsd-current@FreeBSD.org, freebsd-stable@FreeBSD.org
Subject: Re: Securelevels and /dev/io documentation inconsistency
X-BeenThere: freebsd-stable@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Production branch of FreeBSD source code <freebsd-stable.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>, 
	<mailto:freebsd-stable-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-stable>
List-Post: <mailto:freebsd-stable@freebsd.org>
List-Help: <mailto:freebsd-stable-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
	<mailto:freebsd-stable-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 12 Jul 2006 18:14:46 -0000

On 2006-07-12 20:35, Alexandros Kosiaris <akosiaris@gmail.com> wrote:
>>It looks like it does.  Would something like this be satisfactory?
>>
>>    1           Secure mode - the system immutable and system
>>                append-only flags may not be turned off; disks for
>>                mounted file systems, /dev/mem and /dev/kmem may not be
>>                opened for writing and /dev/io (if your platform has it)
>>                may not be opened at all; kernel modules (see kld(4))
>>                may not be loaded or unloaded.
>>
>>Regards,
>>Giorgos
>
> Yes it would be. Thank you.

It should be fixed in HEAD now, with this commit:

  Revision  Changes    Path
  1.47      +4 -3      src/share/man/man7/security.7

After a short period (3 days or so), if there are no objections,
corrections or other changes by fellow committers, I'll merge the
change to RELENG_6 too.

Thanks :)