Firewalls: Re: Linux as a Firewall Platform

Firewalls
(December 1996)

Indexed By Thread: [Previous] [Next]

Subject:	Re: Linux as a Firewall Platform
From:	blymn @ awadi . com . au (Brett Lymn)
Date:	Tue, 17 Dec 1996 12:24:41 +1030 (CST)
To:	mark @ internetstartup . com
Cc:	firewalls @ greatcircle . com
In-reply-to:	<32B5B00C . 5DA7 @ internetstartup . com> from "Mark Riggins" at Dec 16, 96 12:24:44 pm

According to Mark Riggins:
>
>It is my understanding that the only way to lower the security level is
>to reboot the system.
>Thus "superuser" can only monotonically increase the level of security. 
>Can any BSD experts confirm this?
>

Yes, that is correct.  There are some things that are reliant on the
security level as well - things like loadable modules can only be
loaded in single user mode.  Access to memory can be blocked as well
but if you are using X on the console then you have to relax that.

-- 
Brett Lymn, Computer Systems Administrator, AWA Defence Industries
===============================================================================
  "Upgrading your memory gives you MORE RAM!" - ad in MacWAREHOUSE catalogue.

References:

Re: Linux as a Firewall Platform
From: "Mark Riggins" <mark @ internetstartup . com>

Indexed By Date	Previous:	Problem With Domain From: "- " <KtownKillaz @ msn . com>
Indexed By Date	Next:	getting fwtk's smap to spool to 2 directories From: Philippe Lavoie <philippe . lavoie @ Matrox . COM>
Indexed By Thread	Previous:	Re: Linux as a Firewall Platform From: Ambrose Li <acli @ www . mingpaoxpress . com>
Indexed By Thread	Next:	Re: Linux as a Firewall Platform From: Darren Reed <avalon @ coombs . anu . edu . au>