RE: Secure 2.4.x kernel

To: "'Robert Clay'" <JClay@techteam.com>, debian-security@lists.debian.org
Subject: RE: Secure 2.4.x kernel
From: Kelly Martin <kellym@fb00.fb.org>
Date: Fri, 21 Dec 2001 11:23:59 -0600
Message-id: <[🔎] 995553B4C2DBD3119BFA0090278A737111C69F@prbdc.fb.org>

As far as I know, Linux does not support doing that.  So the way you do it
is modify your kernel to make fork and exec revokable syscalls, write a
syscall allowing a process to request revocation of unneeded syscalls, and
add that call to your daemon.

Kelly

> -----Original Message-----
> From:	Robert Clay [SMTP:JClay@techteam.com]
> Sent:	Friday, December 21, 2001 11:17 AM
> To:	debian-security@lists.debian.org
> Subject:	RE: Secure 2.4.x kernel
> 
> And how would one do that?
> 
> >>> Kelly Martin <kellym@fb00.fb.org> 12/21/01 12:09PM >>>
> ...Taking away the fork and exec syscalls from a daemon which does not
> need to do either would be a good start.
> 
> 
> 
> 
> -- 
> To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact
> listmaster@lists.debian.org
>

Reply to:

Follow-Ups:
- RE: Secure 2.4.x kernel
  - From: "Gary MacDougall" <gary@freeportweb.com>
- Re: Secure 2.4.x kernel
  - From: matthew@sackman.co.uk (Matthew Sackman)

Prev by Date: RE: Secure 2.4.x kernel
Next by Date: RE: Secure 2.4.x kernel
Previous by thread: RE: Secure 2.4.x kernel
Next by thread: RE: Secure 2.4.x kernel
Index(es):
- Date
- Thread