Re: NFS4 authentification / fsuid

From: J. Bruce Fields
Date: Fri Sep 07 2007 - 11:34:37 EST

Next message: Paul E. McKenney: "Re: [PATCH] list.h: add list_for_each_entry_continue_rcu"
Previous message: J. Bruce Fields: "Re: [BUG] 2.6.23-rc5 kernel BUG at fs/nfs/nfs4xdr.c:945"
In reply to: Trond Myklebust: "Re: NFS4 authentification / fsuid"
Next in thread: J. Bruce Fields: "Re: NFS4 authentification / fsuid"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, Sep 07, 2007 at 01:32:52AM +0200, Trond Myklebust wrote:
> Sorry. Of course, you have to copy the entire /lib, etc. onto the tmpfs,
> but you get the gist....
>
> The point is that it is easy to subvert userspace if you have enough
> privileges. In the above example it may not be entirely undetectable,
> but who here is running a script on every login to check that / is
> indeed uncompromised?

I suppose this is the motivation for things like the "secure attention
key"?

But I'm most curious actually about to what degree the kernel itself is
vulnerable to root (without a reboot). Is disabling /dev/kmem and
module-loading in theory enough? (Modulo bugs like filesystems that
aren't secure against untrusted filesystems, etc.)

--b.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Paul E. McKenney: "Re: [PATCH] list.h: add list_for_each_entry_continue_rcu"
Previous message: J. Bruce Fields: "Re: [BUG] 2.6.23-rc5 kernel BUG at fs/nfs/nfs4xdr.c:945"
In reply to: Trond Myklebust: "Re: NFS4 authentification / fsuid"
Next in thread: J. Bruce Fields: "Re: NFS4 authentification / fsuid"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]