aboutsummaryrefslogtreecommitdiff
path: root/libexec/rc/rc.d/securelevel
diff options
context:
space:
mode:
Diffstat (limited to 'libexec/rc/rc.d/securelevel')
-rwxr-xr-xlibexec/rc/rc.d/securelevel29
1 files changed, 29 insertions, 0 deletions
diff --git a/libexec/rc/rc.d/securelevel b/libexec/rc/rc.d/securelevel
new file mode 100755
index 000000000000..e5c5a410cf62
--- /dev/null
+++ b/libexec/rc/rc.d/securelevel
@@ -0,0 +1,29 @@
+#!/bin/sh
+#
+#
+
+# PROVIDE: securelevel
+# REQUIRE: adjkerntz ipfw pf sysctl_lastload
+
+. /etc/rc.subr
+
+name="securelevel"
+desc="Securelevel configuration"
+rcvar='kern_securelevel_enable'
+start_cmd="securelevel_start"
+stop_cmd=":"
+
+securelevel_start()
+{
+ if [ ${kern_securelevel} -ge 0 ]; then
+ echo 'Raising kernel security level: '
+ ${SYSCTL} kern.securelevel=${kern_securelevel}
+ fi
+}
+
+load_rc_config $name
+
+# doesn't make sense to run in a svcj: config setting
+securelevel_svcj="NO"
+
+run_rc_command "$1"
generated by cgit v1.2.3 (git 2.25.1) at 2025-10-14 05:10:46 +0000