Relying of the fact that a process not having the capability is unable
to know the physical address of a virtual page is nothing but security
through obscurity. Linux' security is not snake oil.
Besides, it would require to give a special capability to process
needing the system call for nothing more than display purposes, which
increases the number of potential security flaws while not adding real
security.
Hence, bad idea.
OG.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.altern.org/andrebalsa/doc/lkml-faq.html