Re: Disabling module loading with a module?

Matthew Kirkwood (weejock@ferret.lmh.ox.ac.uk)
Tue, 17 Aug 1999 23:26:16 +0100 (GMT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: allbery@kf8nh.apk.net: "Re: Disabling module loading with a module?"
Previous message: Alan Cox: "Linux 2.2.12 merges into 2.3.x"
In reply to: Stanislav Krasilovskiy: "Simulating Packet Loss/Out of Order Arrival"
Next in thread: allbery@kf8nh.apk.net: "Re: Disabling module loading with a module?"

On Tue, 17 Aug 1999, Horst von Brand wrote:

> > Kernel modules can hide evidence of a crack, thus allowing crackers to
> > penetrate further into the network.
>
> So can a dozen other methods. If you got root, you've the run of the
> system anyway. The _only_ way to go around that is to have a printer
> connected and send all syslog there.

This is true so long as root is all-powerful. Securelevel means
that this isn't always the case.

Matthew.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: allbery@kf8nh.apk.net: "Re: Disabling module loading with a module?"
Previous message: Alan Cox: "Linux 2.2.12 merges into 2.3.x"
In reply to: Stanislav Krasilovskiy: "Simulating Packet Loss/Out of Order Arrival"
Next in thread: allbery@kf8nh.apk.net: "Re: Disabling module loading with a module?"