From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org)
	by nuthatch.gentoo.org with esmtp (Exim 4.62)
	(envelope-from <gentoo-user+bounces-63983-garchives=archives.gentoo.org@gentoo.org>)
	id 1Ho378-0002js-BT
	for garchives@archives.gentoo.org; Tue, 15 May 2007 19:55:18 +0000
Received: from robin.gentoo.org (localhost [127.0.0.1])
	by robin.gentoo.org (8.14.0/8.14.0) with SMTP id l4FJroeR014352;
	Tue, 15 May 2007 19:53:50 GMT
Received: from spore.ath.cx (c-24-245-14-14.hsd1.mn.comcast.net [24.245.14.14])
	by robin.gentoo.org (8.14.0/8.14.0) with ESMTP id l4FJnPdw009398
	for <gentoo-user@lists.gentoo.org>; Tue, 15 May 2007 19:49:25 GMT
Received: from pascal.spore.ath.cx (pascal.spore.ath.cx [192.168.1.100])
	by spore.ath.cx (Postfix) with ESMTP id 39C263E1B7
	for <gentoo-user@lists.gentoo.org>; Tue, 15 May 2007 14:49:25 -0500 (CDT)
Date: Tue, 15 May 2007 14:49:25 -0500
From: Dan Farrell <dan@spore.ath.cx>
To: gentoo-user@lists.gentoo.org
Subject: Re: [gentoo-user] Managing my kernel
Message-ID: <20070515144925.5e6d0d56@pascal.spore.ath.cx>
In-Reply-To: <200705150921.17733.shrdlu@unlimitedmail.org>
References: <49bf44f10705140848n41d13c0cy5225964032ecb480@mail.gmail.com>
	<4648FFD2.3050609@paradise.net.nz>
	<20070514205742.3a7f5776@voyager.g.spore.ath.cx>
	<200705150921.17733.shrdlu@unlimitedmail.org>
Organization: Spore, Ltd.
X-Mailer: Claws Mail 2.6.1 (GTK+ 2.10.6; x86_64-pc-linux-gnu)
Precedence: bulk
List-Post: <mailto:gentoo-user@lists.gentoo.org>
List-Help: <mailto:gentoo-user+help@gentoo.org>
List-Unsubscribe: <mailto:gentoo-user+unsubscribe@gentoo.org>
List-Subscribe: <mailto:gentoo-user+subscribe@gentoo.org>
List-Id: Gentoo Linux mail <gentoo-user.gentoo.org>
X-BeenThere: gentoo-user@gentoo.org
Reply-to: gentoo-user@lists.gentoo.org
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Archives-Salt: 41037ff4-6806-4489-8059-f8fcb0d859aa
X-Archives-Hash: 57a8443100cf1a9cf0ee6cc4884ea0fe

On Tue, 15 May 2007 09:21:17 +0200
Etaoin Shrdlu <shrdlu@unlimitedmail.org> wrote:

> On Tuesday 15 May 2007 03:57, Dan Farrell wrote:
> 
> > On Tue, 15 May 2007 12:33:22 +1200
> >
> > Mark Kirkwood <markir@paradise.net.nz> wrote:
> > > 1/ builds the known needed things into the kernel
> > > 2/ disables loadable modules completely
> 
> > But Why?  What's the benefit?  
> 
> Well, disabling loadable modules is generally considered to be good
> for the purpose of hardening your system. For example, some rootkits
> use LKMs, and removing loadable modules support might help to prevent
> such attacks.

Interesting, thanks.  I'd never heard of LKM rootkits, although the
concept is I suppose a good one, as far as defeating security goes.  I
must say I'm not going to start worrying about it, but point taken
-- 
gentoo-user@gentoo.org mailing list