Re: One for the Security Guru's

From: David Wagner (daw@mozart.cs.berkeley.edu)
Date: Thu Oct 24 2002 - 01:04:05 EST

Next message: Gilad Ben-Yossef: "Re: over&out (Re: feature request - why not make netif_rx() a pointer?)"
Previous message: Greg KH: "Re: PCI Hotplug Drivers for 2.5"
Next in thread: Greg KH: "Re: One for the Security Guru's"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Robert L. Harris wrote:
> The consultants aparantly told the company admins that kernel modules
>were a massive security hole and extremely easy targets for root kits.

They were blowing smoke. Once the attacker has root on your machine,
you're toast, whether or not you have loadable modules enabled. The right
defense is to prevent attackers from getting root on your machine; the
consultant's recommendations are probably not the best way to spend your
time and energy.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Gilad Ben-Yossef: "Re: over&out (Re: feature request - why not make netif_rx() a pointer?)"
Previous message: Greg KH: "Re: PCI Hotplug Drivers for 2.5"
Next in thread: Greg KH: "Re: One for the Security Guru's"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Thu Oct 31 2002 - 22:00:22 EST