On 2002-03-12 22:26, Rogier R. Mulhuijzen wrote:
> What I meant is, the file permissions on /dev/ad0 stop ordinary users from
> even reaching the point where the secure level denies the attempt.
>
> And so only root can actually trigger the secure level violation log
> message. So it cannot be used to maliously fill the logs. Unless someone
> has root, and then you have bigger problems.
Indeed. But we're discussing something about code that doesn't exist.
Rate limiting is not bad, IMHO. But I'll let this go, until we have code
to work on. I'm just concerned that there might be things that securelevel
would disallow, that can be done by ordrinary users. For instance if user
mounts are allowed, mounting a partition or floppy disk etc.
Giorgos Keramidas FreeBSD Documentation Project
keramida@{freebsd.org,ceid.upatras.gr} http://www.FreeBSD.org/docproj/
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-hackers" in the body of the message
