From: Evgeniy Polyakov <[EMAIL PROTECTED]> Date: Thu, 26 Oct 2006 18:57:13 +0400
> It just calls /sbin/modprobe, which in turn runs tons of scripts in > /etc/hotplug, modprobe and other places... > In the paranoid case we should not allow any user to load kernel > modules, even known ones. Should this option be guarded by some > capability check? Do you realize that sys_socket() already makes this kind of thing happen already? - To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to [EMAIL PROTECTED] More majordomo info at http://vger.kernel.org/majordomo-info.html