Date: Thu, 7 Sep 2000 14:57:37 -0400 (EDT) From: Vivek Khera <khera@kciLink.com> To: Paul Herman <pherman@frenchfries.net> Cc: freebsd-current@freebsd.org Subject: Re: call for testers: init securelevel patch Message-ID: <14775.58657.905594.704448@onceler.kciLink.com> In-Reply-To: <Pine.BSF.4.21.0009071816380.1013-100000@bagabeedaboo.security.at12.de> References: <Pine.BSF.4.21.0009071816380.1013-100000@bagabeedaboo.security.at12.de>
next in thread | previous in thread | raw e-mail | index | archive | help
Your patch does seem to do the right thing for me. Now I can run the system at a securelevel and when I go to single user mode, I can still do necessary system maintenance. The only thing I saw that was a bit unexpected is that when I went to single user mode and typed "reboot" it went back to securelevel 1 before it killed off the remaining processes. Not a big deal, but juse a bit unexpected. I think the only thing to watch for is that process ID 1 cannot be re-used even if init dies and the system magically still keeps running. If pid 1 cannot ever be reassigned, I think it should be a safe patch. In any case, I'm going to use it on my systems even if it doesn't get MFC'd back to -stable (it applied perfectly cleanly.) Thanks! -- =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Vivek Khera, Ph.D. Khera Communications, Inc. Internet: khera@kciLink.com Rockville, MD +1-301-545-6996 GPG & MIME spoken here http://www.khera.org/~vivek/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?14775.58657.905594.704448>