Viewing SSH Connection

Daniel O'Connor doconnor at gsoft.com.au
Tue Jun 8 07:37:21 GMT 2004


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Tue, 8 Jun 2004 16:40, Dariusz Kulinski wrote:
> > As long as I do the 'kldunload snp.ko', I should be ok, right? Don't
> > need to worry about /dev/snp* ?
>
> actually when watch command is called I belive it automatically loads
> snp.ko.
>
> I don't know how you can protect against that, either erase snp.ko or
> maybe increase securelevel to 1 (man securelevel).
> But after that you won't be able to load/unload any module (there are
> also more restrictions) until you reboot your computer.

If someone has root then you couldn't prevent them using watch, simple as 
that.
(They might have to reboot first but..)

- -- 
Daniel O'Connor software and network engineer
for Genesis Software - http://www.gsoft.com.au
"The nice thing about standards is that there
are so many of them to choose from."
  -- Andrew Tanenbaum
GPG Fingerprint - 5596 B766 97C0 0E94 4347 295E E593 DC20 7B3F CE8C
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (FreeBSD)

iD8DBQFAxWyp5ZPcIHs/zowRAr7QAJ9Ky9nbI/MeMNlMvDbUqIfaaYkotgCeNi8c
43/iJI0RlOdanpqnLYqAnqU=
=PWw/
-----END PGP SIGNATURE-----


More information about the freebsd-stable mailing list