On Tue, Jul 1, 2008 at 11:53 AM, Dennis Clarke <[EMAIL PROTECTED]> wrote:
> As a side note, and tangential to this discussion, I have long felt
> that we need a md5hash database in the system that would prevent this
> sort of hackery from taking place and making a change to a system
> state via some hacked up binary. Making a change to the kernel should
> be a strict no no .. but it is possible.
Excellent idea!
$ elfsign verify /kernel/kmdb/sparcv9/genunix
elfsign: verification of /kernel/kmdb/sparcv9/genunix passed.
$ elfdump /kernel/kmdb/sparcv9/genunix
...
Section Header[19]: sh_name: .SUNW_signature
sh_addr: 0 sh_flags: [ SHF_EXCLUDE ]
sh_size: 0x10e sh_type: [ SHT_SUNW_SIGNATURE ]
sh_offset: 0xd897e sh_entsize: 0
sh_link: 0 sh_info: 0
sh_addralign: 0x1
...
I thought bits were around or coming to only execute those things with
a valid signature.
--
Mike Gerdts
http://mgerdts.blogspot.com/
_______________________________________________
indiana-discuss mailing list
[email protected]
http://mail.opensolaris.org/mailman/listinfo/indiana-discuss
