Re: 'lock' modules?

From: David Marshall (marshall@athena.net.dhis.org)
Date: Wed Jun 07 2000 - 20:42:14 EST

Next message: zainprov@swbell.net: "Shocking LOSE 10-100lbs. DESTINY"
Previous message: Johan Cederdahl: "problem"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Jason Venner <jason@idiom.com> writes:

> It would be nice to lock modules down for the case of running in
> chrooted environments, so that even if root is captured, the risk of
> breakout is reduced.
>
> This is weak, since chrooting itself is a weak security feature.

If root is compromised, the attacker can still access kernel memory.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: zainprov@swbell.net: "Shocking LOSE 10-100lbs. DESTINY"
Previous message: Johan Cederdahl: "problem"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Thu Jun 15 2000 - 21:00:15 EST