[Triumf-linux-managers] kernel vulnerability
Konstantin Olchanski
olchansk at triumf.ca
Mon Aug 17 10:04:48 PDT 2009
On Sun, Aug 16, 2009 at 03:26:28PM -0700, Andrew Daviel wrote:
>
> ... But hackers don't seem to bother ...
> ... Easier to go after XP users.
This line of thinking eventually leads to the conclusion that
"security is not important because bad guys do not exist".
> # service bluetooth stop ; chkconfig bluetooth off
Denice tells me that this does not prevent autoloading of "bad" kernel
modules.
> On my Fedora 9 system, modules.conf seems to be replaced by
> /etc/modules.d/*
> /etc/modules.d/blocks with
> install pppox /bin/true
Can this be accidentally defeated by the existance of some other
/etc/modules.d/ file that happens to have
a line "install pppox /bin/do-something-else" overwriting
the /bin/true command?
Do we need to "grep pppox /etc/modules.d" to make sure?
--
Konstantin Olchanski
Data Acquisition Systems: The Bytes Must Flow!
Email: olchansk-at-triumf-dot-ca
Snail mail: 4004 Wesbrook Mall, TRIUMF, Vancouver, B.C., V6T 2A3, Canada
More information about the Triumf-linux-managers
mailing list