From owner-freebsd-arch  Wed Oct 10 10:11:24 2001
Delivered-To: freebsd-arch@freebsd.org
Received: from dragon.nuxi.com (trang.nuxi.com [66.92.13.169])
	by hub.freebsd.org (Postfix) with ESMTP id B947737B40B
	for <arch@FreeBSD.org>; Wed, 10 Oct 2001 10:11:21 -0700 (PDT)
Received: (from obrien@localhost)
	by dragon.nuxi.com (8.11.6/8.11.1) id f9AHArn19119;
	Wed, 10 Oct 2001 10:10:53 -0700 (PDT)
	(envelope-from obrien)
Date: Wed, 10 Oct 2001 10:10:53 -0700
From: "David O'Brien" <dev-null@NUXI.com>
To: Dag-Erling Smorgrav <des@ofug.org>, arch@FreeBSD.org
Subject: Re: cvs commit: src/sys/kern kern_proc.c kern_prot.c uipc_socket.c uipc_usrreq.c src/sys/netinet raw_ip.c tcp_subr.c udp_usrreq.c
Message-ID: <20011010101053.A9313@dragon.nuxi.com>
Reply-To: arch@FreeBSD.org
References: <200110092140.f99LeVA74145@freefall.freebsd.org> <xzp7ku3h6c8.fsf@flood.ping.uio.no> <200110101522.f9AFM0S63283@khavrinen.lcs.mit.edu> <xzpy9mjfq4z.fsf@flood.ping.uio.no> <200110101556.f9AFuvU63583@khavrinen.lcs.mit.edu>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <200110101556.f9AFuvU63583@khavrinen.lcs.mit.edu>; from wollman@khavrinen.lcs.mit.edu on Wed, Oct 10, 2001 at 11:56:57AM -0400
X-Operating-System: FreeBSD 5.0-CURRENT
Organization: The NUXI BSD group
X-Pgp-Rsa-Fingerprint: B7 4D 3E E9 11 39 5F A3  90 76 5D 69 58 D9 98 7A
X-Pgp-Rsa-Keyid: 1024/34F9F9D5
Sender: owner-freebsd-arch@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-arch.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-arch>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-arch>
X-Loop: FreeBSD.ORG

On Wed, Oct 10, 2001 at 11:56:57AM -0400, Garrett Wollman wrote:
> <<On 10 Oct 2001 17:53:16 +0200, Dag-Erling Smorgrav <des@ofug.org> said:
> 
> > Unless you can provide an argument showing that this is necessary to
> > the correct operation of a FreeBSD system, I'll simply ignore your
> > contribution to this discussion.
> 
> And I'll simply ignore your ``contribution'' as well, if that's how
> you feel about it.
> 
> You asked ``would people mind a lot''.  I answered the question: yes,
> people would mind a great deal.  The process table is *public
> information*, and has always been so in the entire history of UNIX.
> You are proposing a totally unacceptable POLA violation.

I agree.  It would be POLA.  Put something in /etc/rc* that sets it to
`0' if a high SECURE_LEVEL is set, if you like.  Otherwise, leave Unix
alone.

-- 
-- David  (obrien@FreeBSD.org)

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-arch" in the body of the message