RE: [ANNOUNCE] Release Digsig 1.5: kernel moduleforrun-timeauthentication of binaries

From: Arjan van de Ven
Date: Mon Apr 24 2006 - 13:46:22 EST

Next message: Mingming Cao: "Re: [PATCH 1/2] ext3 percpu counter fixes to suppport for morethan 2**31 ext3 free blocks counter"
Previous message: Adrian McMenamin: "Re: [linuxsh-dev] Re: [Alsa-devel] [PATCH] Add Dreamcast AICAdriver to alsa-driver"
In reply to: Makan Pourzandi (QB/EMC): "RE: [ANNOUNCE] Release Digsig 1.5: kernel module forrun-timeauthentication of binaries"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> And, IMO, it should
> be used with other security mechanisms and not alone. I believe though
> this simple functionality can do much to avoid executing viruses or
> other malware on your system.

that I don't believe for a second unfortunately.
It's really really trivial to just do a shar archive or similar that
then executes the binary... or otherwise "pack" the elf binary in such a
way that it bypasses your check.

If you said "this is for DRM purposes" I could buy that partially.
But... to protect against malware? Not at all. Not even a little bit.
There's so many ways on normal systems to bypass this that malware
doesn't even suffer one tiny bit from this.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Mingming Cao: "Re: [PATCH 1/2] ext3 percpu counter fixes to suppport for morethan 2**31 ext3 free blocks counter"
Previous message: Adrian McMenamin: "Re: [linuxsh-dev] Re: [Alsa-devel] [PATCH] Add Dreamcast AICAdriver to alsa-driver"
In reply to: Makan Pourzandi (QB/EMC): "RE: [ANNOUNCE] Release Digsig 1.5: kernel module forrun-timeauthentication of binaries"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]