Date: Mon, 14 May 2001 12:43:27 -0700 From: Alfred Perlstein <bright@wintelcom.net> To: Erik Trulsson <ertr1013@student.uu.se> Cc: "'freebsd-security@freebsd.org'" <freebsd-security@FreeBSD.ORG> Subject: Re: nfs mounts / su / yp Message-ID: <20010514124326.C2009@fw.wintelcom.net> In-Reply-To: <20010514213854.A34209@student.uu.se>; from ertr1013@student.uu.se on Mon, May 14, 2001 at 09:38:54PM %2B0200 References: <20010514200927.A32697@student.uu.se> <Pine.WNT.4.10.10105141416260.-559341@rosencrantz.east.isi.edu> <20010514204259.A33451@student.uu.se> <3B00295D.24643CD7@centtech.com> <3B002E2B.1337F4C9@lmc.ericsson.se> <20010514122650.T18676@fw.wintelcom.net> <20010514213854.A34209@student.uu.se>
next in thread | previous in thread | raw e-mail | index | archive | help
* Erik Trulsson <ertr1013@student.uu.se> [010514 12:39] wrote: > On Mon, May 14, 2001 at 12:26:50PM -0700, Alfred Perlstein wrote: > > > > FreeBSD has securelevels, while not ideal, if implemented properly > > they can limit what root can do. > > Yes, but if users have physical access to the machine they can always reboot > into single user mode. In that case securelevels don't help. > > It is very difficult to secure a machine completely if users have physical > access to it. My apologies, I didn't realize you were talking about physical access. -- -Alfred Perlstein - [alfred@freebsd.org] http://www.egr.unlv.edu/~slumos/on-netbsd.html To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010514124326.C2009>