Date: Mon, 14 May 2001 21:28:56 +0700 From: Igor Podlesny <poige@morning.ru> To: root <root@apsara.barc.ernet.in> Cc: freebsd-security@FreeBSD.ORG Subject: Re: ipfw rules and securelevel Message-ID: <10320318256.20010514212856@morning.ru> In-Reply-To: <Pine.LNX.4.33.0105141802230.18115-100000@apsara.barc.ernet.in> References: <Pine.LNX.4.33.0105141802230.18115-100000@apsara.barc.ernet.in>
next in thread | previous in thread | raw e-mail | index | archive | help
> Dear friends, > Even in securelevel 3 I can bypass ipfw rules. In securelevel 3 I > as root can change the variable "net.inet.ip.fw.enable" using sysctl. When > I run a command > sysctl -w net.inet.ip.fw.enable=0 > It disables the ipfw rules. > Is it a feature or hole in freebsd. doesn't matter how it is called, only matters how it hurts... (it does) > please help -- Igor mailto:poige@morning.ru To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?10320318256.20010514212856>