memory scrubbing

marty goodoldmarty at gmail.com
Wed Jan 30 04:55:47 PST 2008


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

>> > Kernel will try to resume from swap unless you say no.
> 
> Also if kernel config doesn't contain any resume/hibernate options?

Doesn't seem fair, does it:)
Apparently, saved swap state is normally restored, in preparation for the
"possibility" of resuming execution" later during boot. The noresume option
prevents recovery of state, which is what we should desire for security.
    kernel /boot/hlfskernel-2.8.16-grsec ro noresume root=/dev/sde2

Marty B
- --
Putting Microsoft in a computer is like putting screen doors in a submarine.
Hopeless.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iD8DBQFHoHPTodd/GHZYnVQRAp1lAKCFw/uWkCUTm8KPMKtv1/UKiQXKQgCgkbA1
cMdDJjBYGrH9ZVbpz3ACmzM=
=DXG0
-----END PGP SIGNATURE-----



More information about the hlfs-dev mailing list