modules

ken_i_m at elegantinnovations.net ken_i_m at elegantinnovations.net
Tue Jan 6 13:22:07 PST 2004


On Tue, Jan 06, 2004 at 03:05:21PM -0600, Amanda Lynn Rossmiller (sleepynyago at mchsi.com) wrote: 
> i remember reading somewhere that kernel modules'
> use should be discouraged in a secure system...

As I recall the argument, someone could load a module that would allow 
them to do whatever they wanted.  However, to do this the attacker 
needs root and as Cox pointed out if such an attack could be successful 
one's problems are much greater then loadable modules.  A case of closing 
the barn door after the horses have already gone to town.
-- 
I think, therefore, ken_i_m
Chief Gadgeteer, Elegant Innovations
Founder, Bozeman Linux Users Group
(406) 581-0495



More information about the hlfs-dev mailing list