Date: Mon, 10 Jun 1996 11:40:26 -0400 From: Garrett Wollman <wollman@lcs.mit.edu> To: Brian Tao <taob@io.org> Cc: FREEBSD-SECURITY-L <freebsd-security@freebsd.org> Subject: Re: Effects of kern.securelevel >= 0 Message-ID: <9606101540.AA13821@halloran-eldar.lcs.mit.edu> In-Reply-To: <Pine.NEB.3.92.960609193710.8414F-100000@zap.io.org> References: <9606092044.AA08601@halloran-eldar.lcs.mit.edu> <Pine.NEB.3.92.960609193710.8414F-100000@zap.io.org>
next in thread | previous in thread | raw e-mail | index | archive | help
<<On Sun, 9 Jun 1996 19:44:16 -0400 (EDT), Brian Tao <taob@io.org> said: >> No. It is automatically increased by init if it starts out as >=0. > You mean "<= 0"? I haven't fiddled with the default startup value > here, and a 'sysctl kern.securelevel' in multiuser mode shows it is > still at level -1. No, I mean >=0. If it is less than zero, then init doesn't touch it. If it is any other value x >= 0 at the end of /etc/rc, then init will raise it to x+1, and lower it back to 0 when re-entering single-user mode (as via `shutdown' without `-r' or `-h'). -GAWollman -- Garrett A. Wollman | Shashish is simple, it's discreet, it's brief. ... wollman@lcs.mit.edu | Shashish is the bonding of hearts in spite of distance. Opinions not those of| It is a bond more powerful than absence. We like people MIT, LCS, ANA, or NSA| who like Shashish. - Claude McKenzie + Florent Vollant
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?9606101540.AA13821>