Hi, For an explanation of what the signed_exec Anti-Trojan kernel option does please see: http://www.trojanproof.org/sigexec.pdf OpenBSD Updates: Updates for OpenBSD 3.1 and Current at 29th April 2002 are available from: http://www.trojanproof.org/sigexec-obsd3.1r-0.1a.tgz These patches have been tested against a snapshot of OpenBSD 3.1 Release downloaded April 26 2002 and a CVS update against Current on 29th April 2002. The relevant OpenBSD CVS tags are: $OpenBSD: GENERIC,v 1.86 2002/03/14 00:42:25 miod Exp $ $OpenBSD: exec.h,v 1.14 2002/03/14 03:16:12 millert Exp $ $OpenBSD: exec_script.c,v 1.15 2001/11/06 19:53:20 miod Exp $ $OpenBSD: kern_exec.c,v 1.66 2002/03/14 17:17:23 mickey Exp $ $OpenBSD: kern_lkm.c,v 1.37 2002/03/14 01:27:04 millert Exp $ FreeBSD Updates: Updated kernel option signed_exec patches for FreeBSD 5.0 DP1 Developer Preview One are available from: http://www.trojanproof.org/sigexec-fbsd5.0dp1-0.1.tgz These patches have been tested against 5.0 DP1 The relevant CVS tags are: $FreeBSD: src/sys/i386/conf/GENERIC,v 1.335 2002/02/13 18:47:50 alfred Exp $ $FreeBSD: src/sys/conf/options,v 1.304 2002/03/12 04:00:11 jeff Exp $ $FreeBSD: src/sys/kern/kern_exec.c,v 1.154 2002/02/27 20:57:57 imp Exp $ $FreeBSD: src/sys/kern/kern_linker.c,v 1.79 2002/03/10 23:12:43 dwmalone Exp $ Regards, -- Michael A. Williams Security Software Engineering and InfoSec Manager NetXSecure NZ Limited, http://www.nxs.co.nz Ph: +64.3.318.2973 Fax: +64.3.318.2975 Mob: +64.21.995.914
This archive was generated by hypermail 2b30 : Mon May 06 2002 - 06:47:03 PDT