Subject: Re: Ctrl+Alt+Esc = db>
To: Robert P. Thille <firstname.lastname@example.org>
From: Roland Dowdeswell <email@example.com>
Date: 01/26/2003 18:51:11
On 1043624666 seconds since the Beginning of the UNIX epoch
"Robert P. Thille" wrote:
>I should hope that it's possible to secure a box if the attacker only
>has access to the keyboard & display. ie, it's a kiosk machine, that
>the actual computer is locked away in a steel box.
It should be secure, if you turn the debugger off either via sysctl:
# sysctl -w ddb.opanic=0
# sysctl -w ddb.fromconsole=0
or compile a kernel which doesn't have a debugger.
As well as take care of all the security concerns in the firmware,
Roland Dowdeswell http://www.Imrryr.ORG/~elric/