Subject: Re: The reason for securelevel
To: None <tech-security@NetBSD.org, tech-kern@NetBSD.org>
From: Chapman Flack <nblists@anastigmatix.net>
List: tech-kern
Date: 01/26/2006 15:29:36
Julio M. Merino Vidal wrote:
>>   Can one even run X with securelevel=1 yet? I kept maintaining a  patch
> It used to be possible with pkgsrc/sysutils/aperture.  Haven't
> tried for a looong while, though.

Seems to me there was a recent thread about that on port-i386,
which revealed that (a) aperture apparently does work on that
platform, and (b) aperture works because a hole was carved in the
securelevel restrictions on IOPL-manipulation just to allow
aperture to work (and I did not see an argument that the hole was
or was not SU-complete).   :/

-Chap