Re: kernel module loading vs securelevel

To: tls%panix.com@localhost
Subject: Re: kernel module loading vs securelevel
From: Izumi Tsutsui <tsutsui%ceres.dti.ne.jp@localhost>
Date: Sun, 17 Oct 2010 04:23:27 +0900

> > I'm just asking if "options INSECURE is mandaory to use autoloading,"
> > not module/autoloading is secure/silly/boo or not.
> 
> No.  As far as I can tell, there's a bug in the relevant kauth listener,
> at least in terms of the original intent of the author of the autoloading
> code; the system scope kauth listener should return DEFER, not DENY.

Okay, fair enough. Thanks.

> However, I think it's a troublesome question whether this is really
> the right policy to apply.
 :

Well, it's another discussion how modules can be secure,
which is out of my scope.

---
Izumi Tsutsui

References:
- Re: kernel module loading vs securelevel
  - From: Thor Lancelot Simon

Prev by Date: re: kernel module loading vs securelevel
Next by Date: Re: kernel module loading vs securelevel
Previous by Thread: Re: kernel module loading vs securelevel
Next by Thread: Re: kernel module loading vs securelevel
Indexes:

Home | Main Index | Thread Index | Old Index