Subject: Re: Getting rid of /dev/veriexec
To: Nathan J. Williams <nathanw@wasabisystems.com>
From: Steven M. Bellovin <smb@cs.columbia.edu>
List: tech-kern
Date: 12/02/2005 09:42:09
In message <mtuvey7wp9p.fsf@contents-vnder-pressvre.mit.edu>, "Nathan J. Willia
ms" writes:
>Elad Efrat <elad@NetBSD.org> writes:
>
>> We use sysctl(3) outside sysctl(8) a lot. Recent examples: using sysctl
>> for reading inet/inet6/local PCBs and protocol statistics instead of
>> using /dev/kmem; rpaulo@ even made trpt/trsp use sysctl, which means we
>> don't have to give them the sgid kmem bit anymore.
>
>I object to those, too.
>
I don't -- cleaning up kmem grovelers is a good idea. Sysctl may not
be the best mechanism, but it's far from the worst.
--Steven M. Bellovin, http://www.cs.columbia.edu/~smb