Subject: Re: The reason for securelevel
To: Gilbert Fernandes <gilbert.fernandes@spamcop.net>
From: None <zvrba@globalnet.hr>
List: tech-kern
Date: 01/28/2006 13:37:03
-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160
On Sat, Jan 28, 2006 at 12:28:20PM +0100, Gilbert Fernandes wrote:
>
> Could we have a single "securelevel" option, that would be either 1 or 0.
> When it's set to 1 it would parse a configuration file that lists what
>
Or better yet, change it from 1/0 to the path of the configuration file.
And if the path is an empty string, then there is no securelevel in effect.
+ , the kernel should unconditionally protect the securelevel file once
it is in effect (make it immutable, regardless of flags on the file).
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
iD8DBQFD22VuFtofFpCIfhMRA5IrAJ4qNKv2NT6/llMvo/ArHMk5YeVFngCffsva
P7fcbTiWRea2Ik+ZopdPEeM=
=qFkV
-----END PGP SIGNATURE-----