Firewalls: Re: Linux as a Firewall Platform

Firewalls
(December 1996)

Indexed By Thread: [Previous] [Next]

Subject:	Re: Linux as a Firewall Platform
From:	lists @ lina . inka . de (Bernd Eckenfels)
Date:	Tue, 17 Dec 1996 02:25:24 +0100 (MET)
To:	mark @ internetstartup . com
Cc:	acli @ www . mingpaoxpress . com, firewalls @ greatcircle . com
In-reply-to:	<32B5B00C . 5DA7 @ internetstartup . com> from "Mark Riggins" at Dec 16, 96 12:24:44 pm

> > Linux does not have security levels. The a and i bits can, however, be reset
> > only by the superuser; this may or may not be comparable to the fact that the
> > "security level" can only be reset by the superuser in 4.4bsd.
> 
> It is my understanding that the only way to lower the security level is
> to reboot the system.

Linus HAS security level. It is 'increase only' by writing to
/proc/sys/kernel/securelevel. In secure level 1 immutable and append only
flags can't be removed. Of course using hardware write protected media is
even more secure.

Greetings
Bernd

Follow-Ups:

Re: Linux as a Firewall Platform
From: Ambrose Li <acli @ www . mingpaoxpress . com>

References:

Re: Linux as a Firewall Platform
From: "Mark Riggins" <mark @ internetstartup . com>

Indexed By Date	Previous:	Blocking Large numbers of Large ICMP's. From: Steve Lang <stevel @ wave . co . nz>
Indexed By Date	Next:	Problem With Domain From: "- " <KtownKillaz @ msn . com>
Indexed By Thread	Previous:	Re: Linux as a Firewall Platform From: peter @ baileynm . com (Peter da Silva)
Indexed By Thread	Next:	Re: Linux as a Firewall Platform From: Ambrose Li <acli @ www . mingpaoxpress . com>