RE: [ANNOUNCE] Release Digsig 1.5: kernel module forrun-timeauthentication of binaries

>  And, IMO, it should
> be used with other security mechanisms and not alone. I believe though
> this simple functionality can do much to avoid executing viruses or
> other malware on your system.   

that I don't believe for a second unfortunately.
It's really really trivial to just do a shar archive or similar that
then executes the binary... or otherwise "pack" the elf binary in such a
way that it bypasses your check. 

If you said "this is for DRM purposes" I could buy that partially.
But... to protect against malware? Not at all. Not even a little bit.
There's so many ways on normal systems to bypass this that malware
doesn't even suffer one tiny bit from this.


-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [email protected]
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

References:
- RE: [ANNOUNCE] Release Digsig 1.5: kernel module forrun-timeauthentication of binaries
  - From: "Makan Pourzandi \(QB/EMC\)" <[email protected]>

Prev by Date: Re: [linuxsh-dev] Re: [Alsa-devel] [PATCH] Add Dreamcast AICA driver to alsa-driver
Next by Date: Re: [PATCH 1/2] ext3 percpu counter fixes to suppport for more than 2**31 ext3 free blocks counter
Previous by thread: RE: [ANNOUNCE] Release Digsig 1.5: kernel module forrun-timeauthentication of binaries
Next by thread: Re: Linux 2.6.16.10
Index(es):
- Date
- Thread

[Index of Archives] [Kernel Newbies] [Netfilter] [Bugtraq] [Photo] [Stuff] [Gimp] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Video 4 Linux] [Linux for the blind] [Linux Resources]