Re: [PATCH] Capabilities, this time in elf section

Gregory Maxwell (linker@z.ml.org)
Sun, 11 Apr 1999 14:09:08 -0400 (EDT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: David L. Parsley: "Re: caps in elf headers: use the sticky bit!"
Previous message: Rik van Riel: "Re: current->uid"
In reply to: SynFl00d: "Re: current->uid"

On Sun, 11 Apr 1999, Horst von Brand wrote:

> Or get somebody capable running it. I.e, suspect that people are liable to
> type "sl" for "ls", and hide an "sl" binary with all caps somewhere.

Only trusted people should be able to write to trusted bin dirs. People
shouldn't have ./ or other unrested directories in their path unless they
want someone to take over their caps/account.

How about an extension to ext2 to allow GPG sigs on files, and a kernel
module that only allows files to be executed if they are signed by a
trusted key. :)

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: David L. Parsley: "Re: caps in elf headers: use the sticky bit!"
Previous message: Rik van Riel: "Re: current->uid"
In reply to: SynFl00d: "Re: current->uid"