Date: Wed, 22 Dec 2004 22:30:50 -0800 From: Mark <mark@darklogik.org> To: freebsd-questions@freebsd.org Subject: Xorg & xdm & securelevels Message-ID: <20041222223050.A67744@logik.ath.cx>
next in thread | raw e-mail | index | archive | help
Hello. I realise this may have been covered before and that this may not be the correct list (freebsd-x11 seemed to be more about developement rather than configuration) but anyway: I would like to push my securelevel up to 1 in order to better enforce my security policy (protecting chflags, kernel modules etc) but this of course would break Xorg as it requires access to /dev/io. I've heard that it's possible to run Xorg via xdm whilst the system is booting at securelevel 0 and have the securelevel raised afterwards, effectively allowing X to live in a securelevel > 0 environment. How painful is this to implement? Am I likely to run into any major problems? I've also heard that it's possible to remove the SUID bit from X by using xdm, but that's probably for another thread... Any comments, advice, pointers to articles or screams of distaste are welcomed. Mark
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20041222223050.A67744>