Date: Sat, 8 Sep 2001 07:25:42 -0500 From: D J Hawkey Jr <hawkeyd@visi.com> To: Alexander Langer <alex@big.endian.de> Cc: deepak@ai.net, freebsd-security@FreeBSD.ORG Subject: Re: Kernel-loadable Root Kits Message-ID: <20010908072542.A57605@sheol.localdomain> In-Reply-To: <20010908141700.A53738@fump.kawo2.rwth-aachen.de>; from alex@big.endian.de on Sat, Sep 08, 2001 at 02:17:00PM %2B0200 References: <GPEOJKGHAMKFIOMAGMDIGEHGFHAA.deepak_ai.net@ns.sol.net> <200109081052.f88AqRG30016@sheol.localdomain> <20010908141700.A53738@fump.kawo2.rwth-aachen.de>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sep 08, at 02:17 PM, Alexander Langer wrote:
>
> Thus spake D J Hawkey Jr (hawkeyd@visi.com):
>
> > If you're dealing with a "fixed purpose" server, the kernel may not
> > need any KLD. On two of my servers, only blank_saver.ko is loaded,
> > and that could be eliminated too, by not using a screensaver.
>
> This still lets you load own kernel modules.
Not if you blow away the /modules directory (note that I haven't tried
this).
> And from what I've heard, there are also ways to load kernel modules
> if securelevel > 1, though I can't imagine, how.
Don't know.
> Alex
Dave
--
______________________ ______________________
\__________________ \ D. J. HAWKEY JR. / __________________/
\________________/\ hawkeyd@visi.com /\________________/
http://www.visi.com/~hawkeyd/
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010908072542.A57605>