Re: 'sign' modules? was: RE: 'lock' modules?

Olaf Titz (olaf@bigred.inka.de)
Thu, 08 Jun 2000 00:24:11 +0200

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Alexander Viro: "Re: [RFC] union-mount stuff"
Previous message: Gareth Hughes: "Re: glibc-2.1.3 vs. linux-2.4.0-test1ac7"

> So you must implement signature checking into the kernel code. If does
> not match, kernel would return from syscall with error value and drop
> the module. I've already started to write this thing (on module related

Does not help. You can patch the check out of the kernel before
loading the module via /dev/mem if you have root and the system
doesn't run under securelevel. If it does run under securelevel,
loading modules would be an inappropriate action anyway.

Olaf

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: Alexander Viro: "Re: [RFC] union-mount stuff"
Previous message: Gareth Hughes: "Re: glibc-2.1.3 vs. linux-2.4.0-test1ac7"