Great Circle Associates Firewalls
(December 1996) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Re: runlevel, immutable, freebsd vs. /dev/mem
From: Sameer Anja <sameer @ securities . com>
Organization: Internet Securities,Mumbai, India
Date: Thu, 19 Dec 1996 11:03:59 -0800
To: Peter da Silva <peter @ baileynm . com>
Cc: apilosov @ cantor . com, firewalls @ greatcircle . com
References: <9612181935 . AA04392 @ sonic . nmti . com . nmti . com>
Reply-to: sameer @ securities . com 
If root can't access /dev/mem, can't he change the "secure level" and do
it??
And if not, who can change the "secure level" if needed????
	-sam

Peter da Silva wrote:
> 
> > Question: if hacker attains root, couldn't he just use /dev/mem, /dev/kmem,
> > /proc/### interfaces to change the runlevel variable in kernel, and then
> > turn off immutable or whatever else he wants?
> 
> At "most secure" level even root can't access /dev/mem and so on.
Follow-Ups:
References:
Indexed By Date Previous: Re: Is there any freeware implementation of NAT (network address translation)?
From: Paul Ferguson <pferguso @ cisco . com>
Next: re: Raptor Eagle and NNTP
From: Allen Rogers <arogers @ raptor . com>
Indexed By Thread Previous: Re: runlevel, immutable, freebsd vs. /dev/mem
From: peter @ baileynm . com (Peter da Silva)
Next: Re: runlevel, immutable, freebsd vs. /dev/mem
From: Kent Crispin <kent @ songbird . com>
Google
 
Search Internet Search www.greatcircle.com