Subject: Re: security sysctl? (was: r/o filesystem restrictions for firewall?)
To: Thor Lancelot Simon <email@example.com>
From: Manuel Bouyer <firstname.lastname@example.org>
Date: 10/24/2000 21:31:54
On Tue, Oct 24, 2000 at 01:36:47PM -0400, Thor Lancelot Simon wrote:
> I don't at all understand what's "theoretical" about this, or what
> enhancements would be rquired. The policy enforced at securelevel
> 2 was designed and implemented *specifically* for this purpose and
> AFAICT works fine. If you don't understand how to use it to achieve your
> goal, I suggest that you really shouldn't be tinkering with the system's
> security model.
No, actually this is not flexible enouth. We want finer-grained control
over what's allowed and what's not.
Manuel Bouyer <email@example.com>