[ale] Monolithic vs Modularised Kernels
Drag0n
dragon at atlantacon.org
Wed Jul 9 13:42:35 EDT 2003
Not entirely true, all someone needs is to be able to get access to a
script or file loaded by an application or process owned by root or a
system daemon.
Quick, How many scripts are called on start up?( this number will vary
from distro to distro) If I can replace a file or create a file called
by one of these scripts on start up. then <insert kernel module here>.
I personally will never use modules on any system that I plan on giving
anyone access to other than myself or my wife. If a piece of hardware
requires modules to work, I will find other hardware. I do run modules
on my desktop as my video card needs it for all the fancy X graphics,
but I only have one port open on that box running ssh, and only my
account accessible remotely.
In security, paranoia isn't just a role playing game, its a way of
life. The computer is your friend, everyone else is a traitor. treat
them as such.
Drag0n
dragon at atlantacon.org
> Hmmm...to load modules into the kernel, you have to be root. So, if a
> 1337 h4X0r is able to load a module, you're probably already pretty
> screwed.
>
> Or am I missing something?
>
> John
>
> _______________________________________________
> Ale mailing list
> Ale at ale.org
> http://www.ale.org/mailman/listinfo/ale
_______________________________________________
Ale mailing list
Ale at ale.org
http://www.ale.org/mailman/listinfo/ale
More information about the Ale
mailing list