diff options
| author | Theo de Raadt <deraadt@cvs.openbsd.org> | 2017-06-03 22:33:37 +0000 |
|---|---|---|
| committer | Theo de Raadt <deraadt@cvs.openbsd.org> | 2017-06-03 22:33:37 +0000 |
| commit | 5d0d1d5f4c25430c0e177011be0c12615fae6e07 (patch) | |
| tree | 9c7260fd2626833a65832f6269a3fb4c5e1fbf43 /etc | |
| parent | f3a20b98286b6ad0c43eb5ba0e826aeabbbf3a1c (diff) | |
Immediately after mounting / read-write, chmod og-rwx the kernel. Remote
prying eyes were already been hindered at determining kernel addresses, now
local prying eyes are also hindered.
ok tb rpe
Diffstat (limited to 'etc')
| -rw-r--r-- | etc/rc | 3 |
1 files changed, 2 insertions, 1 deletions
@@ -1,4 +1,4 @@ -# $OpenBSD: rc,v 1.498 2017/05/30 12:04:26 tb Exp $ +# $OpenBSD: rc,v 1.499 2017/06/03 22:33:36 deraadt Exp $ # System startup script run by init on autoboot or after single-user. # Output and error are redirected to console by init, and the console is the @@ -342,6 +342,7 @@ mount -a -t nonfs,vnd # Re-mount the root filesystem read/writeable. (root on nfs requires this, # others aren't hurt.) mount -uw / +chmod og-rwx /bsd rm -f /fastboot |