> Or get somebody capable running it. I.e, suspect that people are liable to
> type "sl" for "ls", and hide an "sl" binary with all caps somewhere.
Only trusted people should be able to write to trusted bin dirs. People
shouldn't have ./ or other unrested directories in their path unless they
want someone to take over their caps/account.
How about an extension to ext2 to allow GPG sigs on files, and a kernel
module that only allows files to be executed if they are signed by a
trusted key. :)
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/