[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: /boot partition changes when it should not

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

thib wrote:
> I would suggest going through the tune2fs(8) manpage and find
> out what could be..  tuned.  You know what?  I think your first
> suggestion is a good one - look at the mount count configuration for a
> starter.

OK, I studied the tune2fs manpage. I found that it controls what happens
when a certain mount count or mount interval is reached. Which requires
mount count and time to be already stored in the filesystem. What I need
is not to prevent the reaction to this data (count and time). What I
need is to prevent this data to be updated in the first place during
mount while booting.

> The question is, then, as usual;  why is it important?

It detects malicious tampering with the boot system.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkuVouYACgkQ+VSRxYk4409D0QCeLyNQ3HbvOuEJfENE8IFt1ML7
hsgAn2yWY48F0j1OPLowLtc9EEPW2tFj
=RVfM
-----END PGP SIGNATURE-----
Reply to: