Date: Mon, 07 Oct 1996 03:10:27 -0700 From: "Jordan K. Hubbard" <jkh@time.cdrom.com> To: Michael Hancock <michaelh@cet.co.jp> Cc: Bruce Evans <bde@zeta.org.au>, current@freebsd.org Subject: Re: secure level diffs to kern_mib.c, LINT Message-ID: <5486.844683027@time.cdrom.com> In-Reply-To: Your message of "Mon, 07 Oct 1996 18:49:17 %2B0900." <Pine.SV4.3.93.961007184307.14359A-100000@parkplace.cet.co.jp>
next in thread | previous in thread | raw e-mail | index | archive | help
> On Sun, 6 Oct 1996, Bruce Evans wrote: > > > Actually, securelevel 1 is normally so insecure that it shouldn't be used. > > It essentially only provides write protection of /dev/mem and /dev/kmem. > > Isn't write protection of /dev/mem /dev/kmem a good enough reason for use? Not generally - think about having to install kernels or do make worlds single-user. I don't know of *anyone* who does make worlds while single-user, it simply takes the machine down for too long when it could still be doing useful work during the build - I usually have a make world running on my box *two or three times a day* and I don't even notice it while I do my other work. I don't see what the big deal about adding a sysctl line to /etc/rc is here, I really don't. > So facilitate improvements, don't hinder it. Sometimes "giving in to gratuitous nit-picking" is also confused with "facilitating improvements." :-) Jordan
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5486.844683027>