From owner-freebsd-security  Mon Jun 21  1:49: 1 1999
Delivered-To: freebsd-security@freebsd.org
Received: from flood.ping.uio.no (flood.ping.uio.no [129.240.78.31])
	by hub.freebsd.org (Postfix) with ESMTP id 15E011505F
	for <freebsd-security@FreeBSD.ORG>; Mon, 21 Jun 1999 01:48:19 -0700 (PDT)
	(envelope-from des@flood.ping.uio.no)
Received: (from des@localhost)
	by flood.ping.uio.no (8.9.3/8.9.1) id KAA44297;
	Mon, 21 Jun 1999 10:48:16 +0200 (CEST)
	(envelope-from des)
To: Frank Tobin <ftobin@bigfoot.com>
Cc: FreeBSD-security Mailing List <freebsd-security@FreeBSD.ORG>
Subject: Re: proposed secure-level 4 patch
References: <Pine.BSF.4.10.9906190053050.60212-200000@srh0710.urh.uiuc.edu>
From: Dag-Erling Smorgrav <des@flood.ping.uio.no>
Date: 21 Jun 1999 10:48:15 +0200
In-Reply-To: Frank Tobin's message of "Sat, 19 Jun 1999 00:56:19 -0500 (CDT)"
Message-ID: <xzpn1xu7xdc.fsf@flood.ping.uio.no>
Lines: 12
X-Mailer: Gnus v5.5/Emacs 19.34
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

Frank Tobin <ftobin@bigfoot.com> writes:
> Okay, a good friend of mine Kris Wehner has written a patch to implement
> the proposed securelevel of 4, which would disallow the opening of
> secure ports (<1024) while in the securelevel of 4.  The patch is against
> 3.2-STABLE kernel, as of within 12 hours.  I'd like to hear more comments
> before I send it as a send-pr.  The patch is attached.

One word: capabilities.

DES
-- 
Dag-Erling Smorgrav - des@flood.ping.uio.no


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message