Re: BTTV detection broken in 2.4.0-test11-pre5

• Next message: Werner Almesberger: "[PATCH,RFC] initrd vs. BLKFLSBUF"
• Previous message: Jeff Epler: "Re: run level 1, login takes too long, 2.4.X vs. 2.2.X"
• In reply to: David Woodhouse: "Re: BTTV detection broken in 2.4.0-test11-pre5"
• Next in thread: Ragnar Hojland Espinosa: "Re: BTTV detection broken in 2.4.0-test11-pre5"
• Reply: Ragnar Hojland Espinosa: "Re: BTTV detection broken in 2.4.0-test11-pre5"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 20 Nov 2000, David Woodhouse wrote:
> On Sun, 19 Nov 2000, Dan Hollis wrote:
> > Writeprotect the flashbios with the motherboard jumper, and remove the
> > cmos battery.
> > Checkmate. :-)
> Only if you run your kernel XIP from the flash. If you load it into RAM,
> it's still possible for an attacker to modify it. You can load new code
> into the kernel even if the kernel doesn't make it easy for you by having
> CONFIG_MODULES defined.

The original assertion made was that a script kiddie could modify the
kernel so you wouldnt be able to detect a rooted box even after a reboot.

What I posted would stop that cold, 100%. Boot from writeprotected floppy,
writeprotect the flashbios, and remove the cmos battery.

-Dan

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
Please read the FAQ at http://www.tux.org/lkml/

• Next message: Werner Almesberger: "[PATCH,RFC] initrd vs. BLKFLSBUF"
• Previous message: Jeff Epler: "Re: run level 1, login takes too long, 2.4.X vs. 2.2.X"
• In reply to: David Woodhouse: "Re: BTTV detection broken in 2.4.0-test11-pre5"
• Next in thread: Ragnar Hojland Espinosa: "Re: BTTV detection broken in 2.4.0-test11-pre5"
• Reply: Ragnar Hojland Espinosa: "Re: BTTV detection broken in 2.4.0-test11-pre5"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Thu Nov 23 2000 - 21:00:18 EST