how to increase existing partition ?

Taavi Burns taavi-LbuTpDkqzNzXI80/IeQp7B2eb7JE58TQ at public.gmane.org
Mon Jan 19 04:16:13 UTC 2004


On Sun, Jan 18, 2004 at 09:30:47PM -0500, Lennart Sorensen wrote:
> Most exploits attack things in memory, not on disk, and once access is
> gained, calling remount to rw is no big deal.  Having to remount /usr
> before and after all upgrades is a serious hassle for a marginal slow
> down in the speed an exploit can be performed.  Unless you can prevent
> the filesystem from ever being remounted rw, it doesn't do much good.

AFAIK FreeBSD has different security levels; one can only increase
the security setting, not decrease it, and at one of the levels
(un)mounting of any kind is strictly verboten.  One must reboot to
adjust anything.  Naturally, the first thing a hardened box will do
on booting is kick the security level way up (before it brings up
the network interface).  If one can alter memory, it's probably possible
to "undo" the security level, but if they've done it right, the kernel
should probably panic when someone attempts it (and a kernel panic on BSD
generally causes a reboot and the attacker's back at square one).

-- 
taa

   Delusions are often functional. A mother's opinion about her
   children's beauty, intelligence, goodness etc. adnauseum keep her
   from drowning them at birth.
      - Robert A. Heinlein
/*eof*/
--
The Toronto Linux Users Group.      Meetings: http://tlug.ss.org
TLUG requests: Linux topics, No HTML, wrap text below 80 columns
How to UNSUBSCRIBE: http://tlug.ss.org/subscribe.shtml





More information about the Legacy mailing list