Re: kernel module loading vs securelevel

To: tech-kern%netbsd.org@localhost
Subject: Re: kernel module loading vs securelevel
From: Matthew Mondor <mm_lists%pulsar-zone.net@localhost>
Date: Mon, 18 Oct 2010 12:14:07 -0400

On Mon, 18 Oct 2010 09:31:32 -0400
Steven Bellovin <smb%cs.columbia.edu@localhost> wrote:

> Signatures provide *authentication*; what is needed here is *authorization*.

While I agree, there also are situations were both can be welcome...

Another solution someone proposed which I like is hashing the modules
to then at load time rehash and match a module against the hash set,
which would be a simpler, shorter-term solution.  I think that
embedding the hashes set in the kernel image would be safer than using
a file, however.  Unfortunately, this makes developing, installing or
upgrading a module less friendly as the kernel image has to be
refreshed and the system rebooted.
-- 
Matt

References:
- Re: kernel module loading vs securelevel
  - From: David Holland
- Re: kernel module loading vs securelevel
  - From: Izumi Tsutsui
- Re: kernel module loading vs securelevel
  - From: Masao Uebayashi
- Re: kernel module loading vs securelevel
  - From: Thor Lancelot Simon
- Re: kernel module loading vs securelevel
  - From: Matthew Mondor
- Re: kernel module loading vs securelevel
  - From: Thor Lancelot Simon
- Re: kernel module loading vs securelevel
  - From: Jean-Yves Migeon
- Re: kernel module loading vs securelevel
  - From: Steven Bellovin

Prev by Date: Re: kernel module loading vs securelevel
Next by Date: Re: kernel module loading vs securelevel
Previous by Thread: Re: kernel module loading vs securelevel
Next by Thread: Re: kernel module loading vs securelevel
Indexes:

Home | Main Index | Thread Index | Old Index