From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.54) id 1FCbHs-0002Am-Vy for garchives@archives.gentoo.org; Fri, 24 Feb 2006 11:39:05 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.5/8.13.5) with SMTP id k1OBbFMK023899; Fri, 24 Feb 2006 11:37:15 GMT Received: from avas.luxadmin.org (avas.luxadmin.org [217.114.212.126]) by robin.gentoo.org (8.13.5/8.13.5) with ESMTP id k1OBbFZ1028127 for ; Fri, 24 Feb 2006 11:37:15 GMT X-Spam-Status: No, hits=0.0 required=3.2 tests=BAYES_00: -1.665 X-Spam-Level: Received: from arktis.luxadmin.org ([195.206.105.1]) by avas.luxadmin.org for gentoo-hardened@lists.gentoo.org; Fri, 24 Feb 2006 13:48:03 +0100 Received: from [192.168.3.81] (drill.healthnet.lu [158.64.36.2]) by arktis.luxadmin.org (Postfix) with ESMTP id 1C814194055 for ; Fri, 24 Feb 2006 12:37:10 +0100 (CET) Message-ID: <43FEE1D4.1000903@struck.lu> Date: Fri, 24 Feb 2006 11:37:08 +0100 From: Daniel Struck User-Agent: Mail/News 1.5 (X11/20060206) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-hardened@gentoo.org Reply-to: gentoo-hardened@lists.gentoo.org MIME-Version: 1.0 To: gentoo-hardened@lists.gentoo.org Subject: [gentoo-hardened] kernel-guard Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-Archives-Salt: 895eb952-f0db-4b80-b2bb-202b526448ea X-Archives-Hash: 8c15c16ab2e319e39c2e830b1ad79dec Hi, "*Kernel-Guard:* It is a sort of rootkit, that prevent anyone include the root from loading or unloading modules...." Is it wise to run this "kernel-guard" (http://www.informatik.uni-freiburg.de/~alsbiha/code.htm)? Amir Alsbih, who found out how to write a rootkit for the 2.6 series of the Linux kernel, now proposes a module, which uses the same method to prevent any other module to load into memory. Greetings, soulwarrior -- gentoo-hardened@gentoo.org mailing list