Re: Fw: signed kernel modules?

From: Roman Zippel
Date: Fri Oct 15 2004 - 06:13:52 EST

Next message: Ingo Molnar: "Re: [patch] Real-Time Preemption, -VP-2.6.9-rc4-mm1-U1"
Previous message: Florian Schmidt: "Re: [patch] Real-Time Preemption, -VP-2.6.9-rc4-mm1-U1"
In reply to: David Howells: "Re: Fw: signed kernel modules?"
Next in thread: Richard B. Johnson: "Re: Fw: signed kernel modules?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi,

On Thu, 14 Oct 2004, David Howells wrote:

> I've uploaded an updated module signing patch with Rusty's suggested
> additions:

Can someone please put this patch into some context, where it's not
completely pointless? As is it does not make anything more secure.
Why is the kernel more trustable than a kernel module?
If someone could show me how I can trust the running kernel, it should be
rather easy to extend the same measures to modules without the need for
this patch.

bye, Roman
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Ingo Molnar: "Re: [patch] Real-Time Preemption, -VP-2.6.9-rc4-mm1-U1"
Previous message: Florian Schmidt: "Re: [patch] Real-Time Preemption, -VP-2.6.9-rc4-mm1-U1"
In reply to: David Howells: "Re: Fw: signed kernel modules?"
Next in thread: Richard B. Johnson: "Re: Fw: signed kernel modules?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]