From owner-freebsd-hackers  Sun Jan 21 14:28:52 2001
Delivered-To: freebsd-hackers@freebsd.org
Received: from flood.ping.uio.no (flood.ping.uio.no [129.240.78.31])
	by hub.freebsd.org (Postfix) with ESMTP id 4938037B402
	for <freebsd-hackers@FreeBSD.ORG>; Sun, 21 Jan 2001 14:28:35 -0800 (PST)
Received: (from des@localhost)
	by flood.ping.uio.no (8.9.3/8.9.3) id XAA67700;
	Sun, 21 Jan 2001 23:28:27 +0100 (CET)
	(envelope-from des@ofug.org)
X-URL: http://www.ofug.org/~des/
X-Disclaimer: The views expressed in this message do not necessarily
  coincide with those of any organisation or company with
  which I am or have been affiliated.
To: "Giovanni P. Tirloni" <tirloni@techie.com>
Cc: freebsd-hackers@FreeBSD.ORG
Subject: Re: Securelevel idea
References: <Pine.BSF.4.21.0101211743380.564-100000@mink01.tirloni.co.uk>
From: Dag-Erling Smorgrav <des@ofug.org>
Date: 21 Jan 2001 23:28:26 +0100
In-Reply-To: "Giovanni P. Tirloni"'s message of "Sun, 21 Jan 2001 17:52:29 -0200 (BRST)"
Message-ID: <xzp66j8czg5.fsf@flood.ping.uio.no>
Lines: 14
User-Agent: Gnus/5.0802 (Gnus v5.8.2) Emacs/20.4
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Sender: owner-freebsd-hackers@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

"Giovanni P. Tirloni" <tirloni@techie.com> writes:
>  I was thinking about securelevels this afternoon and my brain came up
>  with an idea: what about if we could set fine-grained securelevels? Like,
>  each securelevel could have its own set of prohibitons and that could
>  only be changed setting some option in the kernel and compiling a new
>  one.

Congratulations, you just invented capabilities! :)

http://www.trustedbsd.org/

DES
-- 
Dag-Erling Smorgrav - des@ofug.org


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message