Date: Tue, 8 Jun 2004 17:07:13 +0930 From: "Daniel O'Connor" <doconnor@gsoft.com.au> To: freebsd-stable@freebsd.org Cc: Kyle Mott <kyle@xraided.net> Subject: Re: Viewing SSH Connection Message-ID: <200406081707.13629.doconnor@gsoft.com.au> In-Reply-To: <18919733703.20040608001030@takeda.tk> References: <5719057546.20040607235913@takeda.tk> <000001c44d26$bc22a6a0$1414a8c0@kyle> <18919733703.20040608001030@takeda.tk>
next in thread | previous in thread | raw e-mail | index | archive | help
=2D----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Tue, 8 Jun 2004 16:40, Dariusz Kulinski wrote: > > As long as I do the 'kldunload snp.ko', I should be ok, right? Don't > > need to worry about /dev/snp* ? > > actually when watch command is called I belive it automatically loads > snp.ko. > > I don't know how you can protect against that, either erase snp.ko or > maybe increase securelevel to 1 (man securelevel). > But after that you won't be able to load/unload any module (there are > also more restrictions) until you reboot your computer. If someone has root then you couldn't prevent them using watch, simple as=20 that. (They might have to reboot first but..) =2D --=20 Daniel O'Connor software and network engineer for Genesis Software - http://www.gsoft.com.au "The nice thing about standards is that there are so many of them to choose from." -- Andrew Tanenbaum GPG Fingerprint - 5596 B766 97C0 0E94 4347 295E E593 DC20 7B3F CE8C =2D----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (FreeBSD) iD8DBQFAxWyp5ZPcIHs/zowRAr7QAJ9Ky9nbI/MeMNlMvDbUqIfaaYkotgCeNi8c 43/iJI0RlOdanpqnLYqAnqU=3D =3DPWw/ =2D----END PGP SIGNATURE-----
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200406081707.13629.doconnor>