Subject: Re: verified executable kernel modification committed
To: matthew green <mrg@eterna.com.au>
From: Brett Lymn <blymn@baesystems.com.au>
List: tech-security
Date: 11/04/2002 13:38:18
On Mon, Nov 04, 2002 at 02:03:36PM +1100, matthew green wrote:
>
> will i? if i can overwrite the file, i can overwrite the file that has
> the fingerprints on it. as you probably won't reverify the binary until
> next reboot.... boom. same flaw - again.
>
Unless the fingerprints are on ro media (something you can do now) or
have been signed (something I want to look at doing).
--
Brett Lymn