On Sunday 21 June 2009 12:30:26 Tim Judd wrote:
> On 6/21/09, Lowell Gilbert wrote:
> > Tim Judd writes:
> >> Something dawned on me. FreeBSD/Open/Net are all well secured
> >> systems. On an Internet-facing router, would applying a higher
> >> kern.sec
On 6/21/09, Lowell Gilbert wrote:
> Tim Judd writes:
>
>> Something dawned on me. FreeBSD/Open/Net are all well secured
>> systems. On an Internet-facing router, would applying a higher
>> kern.securelevel provide any better, tighter, higher security if the
>> m
2009/6/19 Tim Judd :
> Something dawned on me. FreeBSD/Open/Net are all well secured
> systems. On an Internet-facing router, would applying a higher
> kern.securelevel provide any better, tighter, higher security if the
> machine was broken into? Given you need to lower the
Tim Judd writes:
> Something dawned on me. FreeBSD/Open/Net are all well secured
> systems. On an Internet-facing router, would applying a higher
> kern.securelevel provide any better, tighter, higher security if the
> machine was broken into? Given you need to lower the securele
Something dawned on me. FreeBSD/Open/Net are all well secured
systems. On an Internet-facing router, would applying a higher
kern.securelevel provide any better, tighter, higher security if the
machine was broken into? Given you need to lower the securelevel
before multiuser, it is a reasonable
ill notice quickly if the machine reboots, and the machine
has to be physically secure.
> Also, where i must put the kern.securelevel?
Set it in rc.conf.
> I didnt understood very well in the manual and handbook in which part of
> the bootin process (rc) i must put the line in
Hi,
> Which would be the correct secure level ? 1, 2, or 3?
Not sure, I usually use level 1 across the servers.
> Also, where i must put the kern.securelevel?
$ grep secure /etc/rc.conf
kern_securelevel="1"
kern_securelevel_enable="YES&quo
s and root things, like adding a user to
make the thing by itself, ... or modify my crontab scripts, etc...
Also, where i must put the kern.securelevel?
I didnt understood very well in the manual and handbook in which part of
the bootin process (rc) i must put the line in rc.conf?
Thanks in ad
On Tue, 12 Oct 2004 01:33:44 -0400
epilogue <[EMAIL PROTECTED]> wrote:
> On Mon, 11 Oct 2004 20:03:32 -0400
> Chris Collins <[EMAIL PROTECTED]> wrote:
>
> > Hello Alll
> >
> > I was wondering what is the best kern.securelevel to run on a
> > machine
On Mon, 11 Oct 2004 20:03:32 -0400
Chris Collins <[EMAIL PROTECTED]> wrote:
> Hello Alll
>
> I was wondering what is the best kern.securelevel to run on a machine
> that provides general internet services, Web, FTP and Email. I don't
> want this so tight I cannot use t
Hello Alll
I was wondering what is the best kern.securelevel to run on a machine
that provides general internet services, Web, FTP and Email. I don't
want this so tight I cannot use the machine and I have also read in
some post that having the secure level set to high can stop a fsck.
Lowell Gilbert wrote:
is it safe to reboot the system with the sysctl -w kern.securelevel
variable set to -1 ..AFTER the OS has just done a make buildworld ? and
then just pickup where i left off ??
The buildworld should work fine in raised securelevels. Installing
(kernels or the rest of the
"Brent Bailey" <[EMAIL PROTECTED]> writes:
> After i started my
> make buildworld
> while it was building .. i noticed that the kernel sysctl was set to
> sysctl -w kern.securelevel=2
That's fine.
> i tried set it back to 0 or -1 ..but it wouldnt
After i started my
make buildworld
while it was building .. i noticed that the kernel sysctl was set to
sysctl -w kern.securelevel=2
i tried set it back to 0 or -1 ..but it wouldnt let me.
is it safe to reboot the system with the sysctl -w kern.securelevel
variable set to -1 ..AFTER the OS has
14 matches
Mail list logo