On Saturday 06 December 2003 08:09, Karsten M. Self wrote: > The _other_ advantage, though of a compile-in-what-you-need kernel > is that you can then turn _off_ loadable module support. For > highly sensitive servers in hostile-facing environments, this can > eliminate an entire class of potential attacks right there.
That's, unfortunately, not quite correct. It makes these attacks (for
example installing a Kernel rootkit) _harder_ but not impossible.
AFAIK, it's quite possible to write a module loader even without
loadable module support in the kernel. (Don't ask me how, though.)
--
--- Magnus von Koeller ---
email: [EMAIL PROTECTED]
address: International University
Campus 9, App. 13
D-76646 Bruchsal / Germany
phone: +49-7251-700-659
mobile: +49-179-4562940
web: http://www.vonkoeller.de
pgp00000.pgp
Description: signature
