Subject: Re: verified executable kernel modification committed
To: Chris Jepeway <jepeway@blasted-heath.com>
From: Perry E. Metzger <perry@piermont.com>
List: tech-security
Date: 10/31/2002 10:24:04
Chris Jepeway <jepeway@blasted-heath.com> writes:
> Apologies if this conversation is supposed to be moving elsewhere...
>
> > to stop someone else who may choose to have their file executable on
> > your machine something like a DDoS zombie.
> OK, so verified execs stop rootkits from running?
Oh, also, keep in mind, neither verexec nor immutable flags will stop
you from doing a buffer overflow attack or what have you.
> How can chflags do that?
--
Perry E. Metzger perry@piermont.com