Re: Fw: signed kernel modules?

From: David Woodhouse
Date: Thu Oct 14 2004 - 18:35:39 EST

Next message: Maciej W. Rozycki: "Re: __attribute__((unused))"
Previous message: Esben Nielsen: "Re: [patch] Real-Time Preemption, -VP-2.6.9-rc4-mm1-U1"
In reply to: Roman Zippel: "Re: Fw: signed kernel modules?"
Next in thread: David Howells: "Re: Fw: signed kernel modules?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, 2004-10-14 at 23:36 +0200, Roman Zippel wrote:
> No. I still don't know, why the kernel has to do this? You avoided to
> answer this question already before.

Partly to protect against accidentally-corrupted modules causing damage.
Partly to allow a sysadmin (or more likely an IT department) to enforce
a policy that only known and approved modules shall be loaded onto
machines which they're expected to support. Partly to allow other
support providers to do likewise, or at least to _detect_ the fact that
unsupported modules are loaded.

--
dwmw2

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Maciej W. Rozycki: "Re: __attribute__((unused))"
Previous message: Esben Nielsen: "Re: [patch] Real-Time Preemption, -VP-2.6.9-rc4-mm1-U1"
In reply to: Roman Zippel: "Re: Fw: signed kernel modules?"
Next in thread: David Howells: "Re: Fw: signed kernel modules?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]