cpuctl(formely devcpu) patch test request
cokane at FreeBSD.org
Mon Jun 16 18:54:48 UTC 2008
On Mon, 2008-06-16 at 22:27 +0400, Stanislav Sedov wrote:
> On Mon, 16 Jun 2008 19:10:17 +0100
> "Rui Paulo" <rpaulo at FreeBSD.org> mentioned:
> > There's no security issue here.
> > If the system administrator is concerned about "security" of cpuctl,
> > he/she just has to compile-out cpuctl or remove the module from the
> > file system.
> Well, in this case it would be possible to load that again. Setting
> a non-zero securelevel or implementing a specific MAC policy might
> be a more correct solution. cpuctl(4) won't allow any MSR operations
> if securelevel is above zero.
Is it potentially "unsafe" to use RDMSR?
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Size: 195 bytes
Desc: This is a digitally signed message part
Url : http://lists.freebsd.org/pipermail/freebsd-current/attachments/20080616/a77aa7ad/attachment.pgp
More information about the freebsd-current