Re: Building amd64 kernels on i386

To: debian-amd64@lists.debian.org
Subject: Re: Building amd64 kernels on i386
From: Thomas Steffen <steffen.list.account@gmail.com>
Date: Thu, 1 Dec 2005 11:34:00 +0100
Message-id: <[🔎] d7e2700f0512010234p308b86c3v296e26d4d9c949fe@mail.gmail.com>
In-reply-to: <1133367495.19943.29.camel@localhost.localdomain>
References: <1133364464.19943.17.camel@localhost.localdomain> <87lkz69lht.fsf@informatik.uni-tuebingen.de> <1133367495.19943.29.camel@localhost.localdomain>

On 11/30/05, Brice Figureau <brice+debian@daysofwonder.com> wrote:
> Not having gcc on a machine is imho a quite good layer of protection, as
> it will defeat any rootkit script that compiles some custom tools (trust
> me there are more than you would have tought first, I just got my eyes
> on one a few days ago that wanted to be installed through a mambo
> server).

Not having gcc is about as good for security as ROT13 encoding the
names of all executables. Sure, it will confuse every script that
tries to install something, but is it worth it?

If you still have doubts, you can install gcc for compiling the kernel
and then remove it afterwards. Cross-compiling is experimental at
best, if it works at all. I would certainly not try the result of the
cross-compilation on a production server :-).

Thomas

Reply to:

Follow-Ups:
- Re: Building amd64 kernels on i386
  - From: lsorense@csclub.uwaterloo.ca (Lennart Sorensen)

Prev by Date: Re: Open office
Next by Date: Skype from http://v0n0.altervista.org/
Previous by thread: Re: Open office
Next by thread: Re: Building amd64 kernels on i386
Index(es):
- Date
- Thread