Date: Sat, 13 Jun 1998 22:19:09 +1000 (EST) From: Darren Reed <avalon@coombs.anu.edu.au> To: dima@best.net Cc: jayrich@room101.sysc.com, security@FreeBSD.ORG Subject: Re: bsd securelevel patch question Message-ID: <199806131219.FAA11181@hub.freebsd.org> In-Reply-To: <199806130357.UAA06923@burka.rdy.com> from "Dima Ruban" at Jun 12, 98 08:57:10 pm
next in thread | previous in thread | raw e-mail | index | archive | help
In some mail from Dima Ruban, sie said: > > Jay Richmond writes: > > Hello, > > > > Just wondering if we should expect an official patch for the securelevel > > problem that's affecting all the BSD's, or if the one provided in the > > recent exploit is being recommended? > > According to Thomas Ptacek, this is not exactly a bug, and after thinking some > more about it, I kinda agree with him. (Feature, not a bug) Given it is exploitable, whether or not it is a feature, is irrelevant. It permits the protection intended by securelevel over /dev/kmem to be bypassed, reducing the overall security of the system. Darren To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199806131219.FAA11181>