Subject: Re: kern/1967: securelevel should be patchable
To: None <jds@cs.UMD.EDU,>
From: Charles M. Hannum <mycroft@NetBSD.ORG>
List: netbsd-bugs
Date: 01/30/1996 02:26:23
   Ah.  It follows then that _every_ binary and script run in single user mode
   must be immutable, or there's little point to having securelevel 1.

That's correct.  Although I suspect we don't want to make it the
default, someone should identify all of the naughty bits and create
some convenient way for a user to configure their box to be `secure'
if they so desire.