* Eli Dart <dartnersc.gov> [011004 19:30]:
>
> In reply to "Crist J. Clark" <cristjcearthlink.net> :
>
> [snip]
>
> > Have fun. Unless there is outpouring from people who love the idea,
> > I'm not going to commit these to FreeBSD.
>
> Please consider this as part of an outpouring of support from people
> who love the idea.

"me too".

Isn't this fairly common among the other BSDs as well?

An alternative to securelevel is sometimes useful,
and KLDs are a fairly well-known attack method against *BSD.

I don't see any harm in adding it as an option - it's doesn't have to
(definitely shouldn't be) the default, of course.

> I don't always have the option of running a box
> in securelevel 1, and I would like to have this knob available, even
> though it doesn't fix the problem all the way. Something similar
> used to exist in FreeBSD 3.x -- I was sorry when it went away.
>
> --eli

--
Rasputin :: Jack of All Trades - Master of Nuns ::
To Unsubscribe: send mail to majordomoFreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]