Date: Mon, 13 Jul 2009 08:40:30 -0400 From: John Baldwin <jhb@freebsd.org> To: freebsd-chat@freebsd.org Cc: "Jason C. Wells" <jcw@highperformance.net> Subject: Re: Whitelist Before Execution Message-ID: <200907130840.30499.jhb@freebsd.org> In-Reply-To: <4A5A5F8B.4030909@highperformance.net> References: <4A5A5F8B.4030909@highperformance.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sunday 12 July 2009 6:11:23 pm Jason C. Wells wrote: > Is there a method by which we can check the consistency of an executable > or library prior to trusting it for execution? For example, if the file > doesn't exist in the list of trusted files or the checksums do not match > then do not allow execution and write a warning message to the log. I > could do this manually with existing features like mtree. It would be > nice if the system could do it for me. I believe csjp@ has a MAC module to store checksums of trusted executables in the kernel and to fail execve() if the executable is not a known trusted binary. -- John Baldwin
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200907130840.30499.jhb>