From owner-freebsd-hackers  Mon Aug 24 08:45:51 1998
Return-Path: <owner-freebsd-hackers@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id IAA14443
          for freebsd-hackers-outgoing; Mon, 24 Aug 1998 08:45:51 -0700 (PDT)
          (envelope-from owner-freebsd-hackers@FreeBSD.ORG)
Received: from fledge.watson.org (COPLAND.CODA.CS.CMU.EDU [128.2.222.48])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id IAA14408
          for <hackers@FreeBSD.ORG>; Mon, 24 Aug 1998 08:45:41 -0700 (PDT)
          (envelope-from robert@cyrus.watson.org)
Received: from fledge.watson.org (robert@fledge.pr.watson.org [192.0.2.3])
	by fledge.watson.org (8.8.8/8.8.8) with SMTP id LAA24413;
	Mon, 24 Aug 1998 11:44:30 -0400 (EDT)
Date: Mon, 24 Aug 1998 11:44:30 -0400 (EDT)
From: Robert Watson <robert@cyrus.watson.org>
X-Sender: robert@fledge.watson.org
Reply-To: Robert Watson <robert+freebsd@cyrus.watson.org>
To: David Kirchner <dpk@notreal.com>
cc: "B. Richardson" <rabtter@aye.net>, hackers@FreeBSD.ORG
Subject: Re: I want to break binary compatibility.
In-Reply-To: <Pine.BSF.4.02A.9808231833120.19935-100000@notreal.com>
Message-ID: <Pine.BSF.3.96.980824114255.24127B-100000@fledge.watson.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-hackers@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG


Or, alternatively, just a file system flag "approved" that indicates a
binary has been approved for execution by the system operator.  This would
be default set on installed binaries, but could only be added by uid 0 (or
gid 0 or something).

However, this runs into the problem of shared libraries -- as long as
LD_LIBRARY_PATH exists, the possibility of running user-specified code
also exists.  This also doesn't help you if the bugs are in existing code
(that is, in sperl :).

On Sun, 23 Aug 1998, David Kirchner wrote:

> 
> On Fri, 21 Aug 1998, B. Richardson wrote:
> 
> > What I want to do, if possible is build a uniq system such that binaries
> > from other systems will not run on it and vice versa. Is this possible?
> 
> I haven't seen this mentioned yet:
> 
> Would it be possible to hack the kernel so binaries will only be run if
> they have a certain "binary signature", one that is different for every
> machine. You'd want to do all compilation on another, possibly
> non-networked box, and then install all binaries mode '111' (or 4111 or
> whatever) so nobody could read the "signature". Maybe this is how the
> whole magic number thing works... I was thinking more along the lines of a
> 'phrase'.
> 
> Maybe a make world option in /usr/share/mk or something?
> 
> -dpk
> 
> 
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-hackers" in the body of the message
> 


  Robert N Watson 

Carnegie Mellon University            http://www.cmu.edu/
TIS Labs at Network Associates, Inc.  http://www.tis.com/
SafePort Network Services             http://www.safeport.com/
robert@fledge.watson.org              http://www.watson.org/~robert/


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message