Re: patch for 2.1.84: configurable execute_program--testers needed

James Mastros (root@jennifer-unix.dyn.ml.org)
Sun, 1 Feb 1998 01:46:47 -0500 (EST)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: David Campbell: "Re: [PARPORT] Re: problems with parallel port IRQ detection"
Previous message: Michael Elizabeth Chastain: "Patch available: config-cdrom.2184"

On Sat, 31 Jan 1998, Jon Lewis wrote:

> On Sat, 31 Jan 1998, Trevor Johnson wrote:
> > I've made a patch which makes the execute_program code in init/main.c a
> > configurable option. With this code configured out, the kernel will
> > ignore boot options such as "init=/bin/sh"; this can make your system more
> > secure.
>
> What's wrong with the password protection against this sort of thing in
> lilo?

Boot-floppy! (of cource, you could just put a kernel on the boot-floppy...)
Security through obscrity at it's worst!

-=- James Mastros

Next message: David Campbell: "Re: [PARPORT] Re: problems with parallel port IRQ detection"
Previous message: Michael Elizabeth Chastain: "Patch available: config-cdrom.2184"