Xorg & xdm & securelevels
Mark
mark at darklogik.org
Wed Dec 22 22:31:36 PST 2004
Hello.
I realise this may have been covered before and that this may not
be the correct list (freebsd-x11 seemed to be more about developement
rather than configuration) but anyway:
I would like to push my securelevel up to 1 in order to better enforce
my security policy (protecting chflags, kernel modules etc) but this
of course would break Xorg as it requires access to /dev/io. I've
heard that it's possible to run Xorg via xdm whilst the system is
booting at securelevel 0 and have the securelevel raised afterwards,
effectively allowing X to live in a securelevel > 0 environment.
How painful is this to implement? Am I likely to run into any
major problems?
I've also heard that it's possible to remove the SUID bit from X
by using xdm, but that's probably for another thread...
Any comments, advice, pointers to articles or screams of distaste
are welcomed.
Mark
More information about the freebsd-questions
mailing list