Date: Tue, 11 Dec 2001 13:38:13 -0600 (CST) From: Jon Mini <haikugeek@haikugeek.com> To: Mike Barcroft <mike@FreeBSD.ORG> Cc: Paul Richards <paul@freebsd-services.com>, Mike Silbersack <silby@silby.com>, Alfred Perlstein <bright@mu.org>, John Baldwin <jhb@FreeBSD.ORG>, <mini@haikugeek.com>, <cvs-all@FreeBSD.ORG>, <cvs-committers@FreeBSD.ORG> Subject: Re: cvs commit: src/sys/boot/i386/loader version src/share/examp Message-ID: <Pine.LNX.4.33.0112111335130.15609-100000@westhost36.westhost.net> In-Reply-To: <20011211010336.Q1956@espresso.q9media.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 11 Dec 2001, Mike Barcroft wrote: > Paul Richards <paul@freebsd-services.com> writes: > > Perhaps a secure loader would be useful, such that it doesn't allow > interrupting. Similar things could be done with the pre-loader boot, > but this write from loader feature seems so useful to me that I can't > imagine why we would want to turn it off by default, particularly > given the intrinsic insecurities of our current loader. > A "secure loader" is already present on the system. Don't use autoboot, and reboot if the boot script fails. Or, more specifically, add this to loader.rc: boot bye ... should the boot word return (i.e. no kernel was found during the automatic load process), the bye word will reboot the system. No chance is given for anyone at the console to interrupt this process. -- Dizzy Cow (Jon Mini) dizzycow@haikugeek.com ... Desolation ... Despair ... Plastic Forks ... ~ ~ ~ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.LNX.4.33.0112111335130.15609-100000>