[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: going to securelevel=2 directly from boot

To: misc@openbsd.org
Subject: Re: going to securelevel=2 directly from boot
From: Matthew Patton <patton@sysnet.net>
Date: Tue, 3 Mar 1998 21:50:26 -0400

>I want to force my firwall to go secureleve =2 as soon as init tries going
>multi-user. From what I see in init's source, going to level 1 is hard coded
>in. what will conceivably break if I were to instead hard code it to '2'?
>
>Yes, I can use rc.securelevel to do a sysctl() just wondering if I can cut out
>this step.

For the hell of it I mucked with init(). Turns out init.c/multi_user()
doen't get called till right before the login prompt is displayed. This
means securelevel=2 is invoked LATER than it would be if using
/etc/rc.securelevel. Needless to say I switched back to a stock environment.

--------
"I've always thought we could solve a lot of problems if we didn't let
managers read PC magazines." - Corporate Software & Technology's Mickey
McIntire

Prev by Date: Re: g77
Next by Date: solution: running DNS as non-root
Prev by thread: Re: GCC 2.8.0 + Libg++ 2.8.0
Next by thread: solution: running DNS as non-root
Index(es):
- Date
- Thread