Return to BSD News archive
Path: euryale.cc.adfa.oz.au!newshost.carno.net.au!harbinger.cc.monash.edu.au!nntp.coast.net!swidir.switch.ch!01-newsfeed.univie.ac.at!news.cesnet.cz!voskovec.radio.cz!news.uni-stuttgart.de!news.urz.uni-heidelberg.de!rz.uni-karlsruhe.de!not-for-mail
From: uk1o@rzstud2.rz.uni-karlsruhe.de (Felix Schroeter)
Newsgroups: comp.unix.bsd.freebsd.misc
Subject: Re: Is securitylevel implemented in FreeBSD?
Date: 7 Aug 1996 19:05:25 +0200
Organization: University of Karlsruhe, Germany
Lines: 36
Message-ID: <4uaicl$iu7@rzstud2.rz.uni-karlsruhe.de>
References: <4tm7uk$1me@overload.lbl.gov>
NNTP-Posting-Host: rzstud2.rz.uni-karlsruhe.de
Mime-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 8bit
NNTP-Posting-User: uk1o
Hello!
In article <4tm7uk$1me@overload.lbl.gov>,
Jin Guojun[ITG] <jin@gracie.lbl.gov> wrote:
>I have a question on setting securitylevel under FreeBSD. Here is what I did:
># sysctl kern.securelevel
>kern.securelevel = -1 ??? should be = 1 ???
No. FreeBSD is distributed with securelevel = -1, which tells init *not*
to raise securelevel to 1 when entering multiuser mode.
># sysctl -w kern.securelevel=2
>kern.securelevel: -1 -> 2
>#cat > /etc/xxx
># sysctl -w kern.securelevel=5
>kern.securelevel: 2 -> 5
5 makes no difference in comparison to 2.
># cat > /etc/xxx
>The disk is still writeable. If I remember correctly, when the security
>level is greater (higher) than 1, the entire system is read only.
No. Only raw devices for mounted disks (level=1) / all disks (level >= 2)
^^^^^^^^^^^
are no more writable.
>So, does any one know if securitylevel works in FreeBSD?
>Thanks for any information,
Regards, Felix.