Re: [security]: kernel ioctl()'s [3]

Domas Mituzas (midom@mx.nkm.lt)
Fri, 2 Jul 1999 16:25:00 +0200 (CEST)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Jamie Lokier: "Re: [PATCH] linux/signal.h siginit*() optimization"
Previous message: Tom Leete: "Re: [PATCH] linux/signal.h siginit*() optimization"

Hello,
> Thinking about the importance of avoiding a reboot during system
> upgrades: I presume that, unless the containing directory is immutable
> or append_only, that such files can be renamed?
System then can be "upgraded" by cracker. As immutable files are for
protecting them, the policy should be very strict. Of course, you can give
yourself cap_immutable capability if you want to upgrade.

With respect,
Domas Mituzas

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: Jamie Lokier: "Re: [PATCH] linux/signal.h siginit*() optimization"
Previous message: Tom Leete: "Re: [PATCH] linux/signal.h siginit*() optimization"