Re: down to the core
On Wed, 28 Jul 2004 13:10:46 +1000, Daniel wrote in message
<[🔎] 87pt6gomh5.fsf@enki.rimspace.net>:
> One thing which will *not* enhance security, but is often claimed to
> do so, is disabling kernel modules. Even if you don't use them, an
> attacker with root privileges can still insert code into the running
> kernel successfully, with the same result as loading a kernel module.
..this would requires the presence of the loadable module,
or _could_ the attacker provide it?
--
..med vennlig hilsen = with Kind Regards from Arnt... ;-)
...with a number of polar bear hunters in his ancestry...
Scenarios always come in sets of three:
best case, worst case, and just in case.
Reply to: