Re: 'lock' modules?

From: James Sutherland (jas88@cam.ac.uk)
Date: Wed Jun 07 2000 - 15:14:54 EST

Next message: Hans Reiser: "Re: journaling & VM (was: Re: reiserfs being part of the kernel: it'snot just the code)"
Previous message: Andrew T. Scott: "Re: (wh)OOPS.txt"
In reply to: Jason Venner: "Re: 'lock' modules?"
Next in thread: James Sutherland: "Re: 'lock' modules?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, 7 Jun 2000, Jason Venner wrote:

>
> It would be nice to lock modules down for the case of running in
> chrooted environments, so that even if root is captured, the risk of
> breakout is reduced.
>
> This is weak, since chrooting itself is a weak security feature.
>
> I am guessing virtual machines are more the way of doing this ala the
> IBM s390 way or vmware.

Or the way Malcolm Beattie is working on, with Linux :-)

James.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: Hans Reiser: "Re: journaling & VM (was: Re: reiserfs being part of the kernel: it'snot just the code)"
Previous message: Andrew T. Scott: "Re: (wh)OOPS.txt"
In reply to: Jason Venner: "Re: 'lock' modules?"
Next in thread: James Sutherland: "Re: 'lock' modules?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Wed Jun 07 2000 - 21:00:30 EST