Greg KH wrote: >On Mon, Oct 01, 2001 at 10:25:18PM -0700, Crispin Cowan wrote: > >>an LSM module. It has to do with trying to make RaceGuard (our kernel >>enhancement to prevent file system race attacks, USENIX Security '01). >> >>>Is the goal to log all >>>writes to an executable file? If so, isn't this ... gasp ... audit? >>>(expressions of horror all around, I'm sure) >>> >>No, it's not audit :-) It's a access control scheme where you don't get >>to create executables without signing them with a public/private key pair. >> >Wait, do you need this hook for RaceGuard or CryptoMark? I'm confused. > I must have been really tired last night when I wrote that :-) Yes, it's CryptoMark, not RaceGuard. Sorry. >>The race condition is between exec'ing a file and writing to the file, >>not in the LSM hooks. >> >The race condition you are talking about is the "standard" temp file >race, right? Not any current kernel programming race? > That would be right for RaceGuard (again, my apologies for the confusion). The race Seth is referring to is between certifying that a program matches the attached certificate, and someone modifying the program. Crispin -- Crispin Cowan, Ph.D. Chief Scientist, WireX Communications, Inc. http://wirex.com Security Hardened Linux Distribution: http://immunix.org Available for purchase: http://wirex.com/Products/Immunix/purchase.html _______________________________________________ linux-security-module mailing list linux-security-moduleat_private http://mail.wirex.com/mailman/listinfo/linux-security-module
This archive was generated by hypermail 2b30 : Tue Oct 02 2001 - 09:19:26 PDT