cpuctl(formely devcpu) patch test request
Stanislav Sedov
stas at FreeBSD.org
Thu Jun 5 22:55:39 UTC 2008
On Thu, 05 Jun 2008 22:12:29 +0000
"Poul-Henning Kamp" <phk at phk.freebsd.dk> mentioned:
> In message <20080606020927.8d6675e1.stas at FreeBSD.org>, Stanislav Sedov writes:
>
> >The updated patch is available at
> >http://www.springdaemons.com/stas/cpuctl.2.diff
>
> Have we fully thought though the potential for halt&catch_fire ?
>
> Would it make sense to have a more granular security model than
> the simple device-node access based "are you root?" test ?
There's a check that prevents playing with cpuctl if
securelevel is greater than 0. And if it's 0 you can always
execute any code you want in kernel mode.
Or you're talking about something different?
--
Stanislav Sedov
ST4096-RIPE
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 195 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-current/attachments/20080605/f23a1873/attachment.pgp
More information about the freebsd-current
mailing list