On Thu, Sep 07, 2000 at 06:33:20PM +0200, Paul Herman wrote:
> Here is a patch which will allow init(8) (or rather, any process with
> PID 1) to lower the securelevel to 0 when going into single-user
> maintenence mode. This has no effect if securelevel is -1.
>
> Feedback welcome -- there may be security implications I'm not aware
> of. If this is well recieved, I will tack it onto bin/20974 for
> further review and commit into -CURRENT.
This was the behavior a while back. It was removed on purpose. (because
an attacker could attach to PID 1 with a debugger and cause it to lower
secure level without going to single user mode.)
--
Zach Heilig <[EMAIL PROTECTED]>
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-current" in the body of the message
