Date: Thu, 6 Nov 1997 09:11:49 +0100 From: j@uriah.heep.sax.de (J Wunsch) To: freebsd-current@FreeBSD.ORG Subject: Re: [Fwd: Malicious Linux modules - be worried !] Message-ID: <19971106091149.JR42640@uriah.heep.sax.de> In-Reply-To: <4473.878788874@time.cdrom.com>; from Jordan K. Hubbard on Nov 5, 1997 20:01:14 -0800 References: <Pine.BSF.3.96.971105193910.3678J-100000@localhost> <4473.878788874@time.cdrom.com>
next in thread | previous in thread | raw e-mail | index | archive | help
As Jordan K. Hubbard wrote: > Perhaps we should add a hook to disable the > loading of LKMs entirely if the secure level is above a certain > number. You mean, something like these checks? :-) /sys/kern/kern_lkm.c: if ((flag & FWRITE) == 0 || securelevel > 0) /sys/kern/kern_lkm.c: if ((flag & FWRITE) == 0 || securelevel > 0) /sys/kern/kern_lkm.c: if ((flag & FWRITE) == 0 || securelevel > 0) /sys/kern/kern_lkm.c: if ((flag & FWRITE) == 0 || securelevel > 0) /sys/kern/kern_lkm.c: if ((flag & FWRITE) == 0 || securelevel > 0) -- cheers, J"org joerg_wunsch@uriah.heep.sax.de -- http://www.sax.de/~joerg/ -- NIC: JW11-RIPE Never trust an operating system you don't have sources for. ;-)
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19971106091149.JR42640>