Re: system updates, as affected by securelevel
- From: Chuck Swiger <cswiger@xxxxxxx>
- Date: Sun, 19 Nov 2006 00:32:55 -0500
Darrel wrote:
With OpenBSD securelevel=2 I can install a kernel, make build, and
install programs which are compiled using Systrace.
What is the highest securelevel that I can configure on RELENG_6_2
which will not affect compiling and installing; e.g., perhaps not
much local difference but having to reboot for a firewall change?
This installation is new and the AUDIT option will be in the kernel.
securelevel = 0.
Because the kernel is installed using the schg flag: if you have securelevel set to 1 or higher, you will not be able to over-write the kernel without rebooting into single-user mode. See "man init" for details.
[ Of course, reinstalling the kernel and/or world is something which you are encouraged to do under single-user mode... ]
--
-Chuck
_______________________________________________
freebsd-questions@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscribe@xxxxxxxxxxx"
- Follow-Ups:
- Re: system updates, as affected by securelevel
- From: Darrel
- Re: system updates, as affected by securelevel
- References:
- system updates, as affected by securelevel
- From: Darrel
- system updates, as affected by securelevel
- Prev by Date: Re: Qmail & Vpopmail From Ports
- Next by Date: Re: TCP parameters and interpreting tcpdump output
- Previous by thread: system updates, as affected by securelevel
- Next by thread: Re: system updates, as affected by securelevel
- Index(es):
Relevant Pages
|
