Re: [PATCH] module locking

From: Thomas 'Dent' Mirlacher (dent@cosy.sbg.ac.at)
Date: Mon Apr 29 2002 - 02:21:36 EST

Next message: Thomas 'Dent' Mirlacher: "Re: [PATCH] module locking"
Previous message: Stelian Pop: "Re: Sony Vaio Laptop problems"
In reply to: Rolf Fokkens: "[PATCH] module locking"
Next in thread: Thomas 'Dent' Mirlacher: "Re: [PATCH] module locking"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 29 Apr 2002, Rolf Fokkens wrote:

> This patch adds the option op locking module operations, which
> means that no more insmod en rmmod operations are possible. This
> hopefully satisfies some security requirements that state that no
> modularized kernels should be used to be really safe in some
> environents.

you're describing exactly the bahaviour or using capabilities.
see the capable(CAP_SYS_MODULE) calls you removed with your patch.

-- in some way i do, and in some way i don't.

- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/

Next message: Thomas 'Dent' Mirlacher: "Re: [PATCH] module locking"
Previous message: Stelian Pop: "Re: Sony Vaio Laptop problems"
In reply to: Rolf Fokkens: "[PATCH] module locking"
Next in thread: Thomas 'Dent' Mirlacher: "Re: [PATCH] module locking"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Tue Apr 30 2002 - 22:00:16 EST