From owner-freebsd-security Wed Oct 4 11:46:36 2000 Delivered-To: freebsd-security@freebsd.org Received: from beta.root-servers.ch (beta.root-servers.ch [195.49.33.19]) by hub.freebsd.org (Postfix) with SMTP id 2BDEB37B502 for ; Wed, 4 Oct 2000 11:46:34 -0700 (PDT) Received: (qmail 18164 invoked from network); 4 Oct 2000 18:46:24 -0000 Received: from client75-185.hispeed.ch (HELO WORK) (62.2.75.185) by beta.root-servers.ch with SMTP; 4 Oct 2000 18:46:24 -0000 Date: Wed, 4 Oct 2000 20:49:42 +0200 From: Gabriel Ambuehl X-Mailer: The Bat! (v1.46c) UNREG / CD5BF9353B3B7091 Organization: BUZ Internet Services X-Priority: 3 (Normal) Message-ID: <12917380571.20001004204942@buz.ch> To: Dima Dorfman Cc: Kris Kennaway , Alfred Perlstein , Mike Silbersack , Subject: Re[2]: BSD chpass (fwd) In-reply-To: <20001004100859.33A4A1F0A@static.unixfreak.org> References: <20001004100859.33A4A1F0A@static.unixfreak.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hello Dima, Wednesday, October 04, 2000, 12:08:59 PM, you wrote: > of the script kid population). A really clever attacker would modify > your securelevel settings in rc.conf, reboot the machine making it > look like a panic or power surge What about setting schg for it as well? You'd just need to find a way to change it yourself (not sure about it, but it should be changeable in single user mode which is fortunately only controllable by the console). Best regards, Gabriel To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message