Date: Thu, 30 Sep 2010 19:49:05 +0100 From: "Robert N. M. Watson" <rwatson@FreeBSD.org> To: Andriy Gapon <avg@icyb.net.ua> Cc: freebsd-current@FreeBSD.org Subject: Re: sysctls in kern_shutdown: add twin tunables Message-ID: <99D3F3AD-27C1-45C4-B1FC-FFC8A63AF94D@FreeBSD.org> In-Reply-To: <4CA4D496.6080604@icyb.net.ua> References: <4CA4D496.6080604@icyb.net.ua>
next in thread | previous in thread | raw e-mail | index | archive | help
On 30 Sep 2010, at 19:19, Andriy Gapon wrote: > http://people.freebsd.org/~avg/kern_shutdown-tunables.diff > > The above patch adds twin tunables for the following (R/W) sysctls: > - debug.debugger_on_panic > - debug.trace_on_panic > - kern.sync_on_panic > > This seems useful to me, but I am not sure if I am not missing something > important. E.g. security-wise. > It seems that I am not paranoid enough often times. This change seems fine to me. Our trust model assumes that loader.conf will be properly protected (or rather, that if you don't protect loader.conf properly, you should expect unfortunate results). Robert
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?99D3F3AD-27C1-45C4-B1FC-FFC8A63AF94D>