[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: suggestion.

To: kernel-audit@nl.linux.org
Subject: Re: suggestion.
From: "David L. Craig" <dlc@Radix.Net>
Date: Mon, 12 Jun 2000 00:31:36 -0400 (EDT)
In-Reply-To: <20000611224840.A14563@darkstar.netvision> from Marc Esipovich at "Jun 11, 2000 10:48:40 pm"
Organization: (currently in between situations)
Sender: owner-kernel-audit@nl.linux.org

Marc Esipovich wrote:

> Here is a small list, please add.
> 
>   1.  The binary loaders, a,out, elf...
>   2.  In 2.[24].x kernels, the cap stuff. 
>   3.  proc filesystem.
>   4.  NET (ipv4 for now)
>   5.  Filesystem code, mostly DoS and data
>       corruption. this will require people
>       who know their way around filesystems,
>       not for the general auditing crowd.
>   6.  Stress testing the kernel in every
>       imaginable way is bound to find
>       *something*, be creative.

If we are not also auditing the tools that
process this code into objects and
executables, we're fooling ourselves about
kernel security.

Kernel-audit:  discussion list for security and the linux kernel
Archive:       http://mail.nl.linux.org/kernel-audit/

References:
- suggestion.
  - From: Marc Esipovich <marc@mucom.co.il>

Prev by Date: Re: A proposed model for the audit
Next by Date: 300 subscribed!
Prev by thread: Re: Some suggestions.
Next by thread: Only auditing current 2.4 code?
Index(es):
- Date
- Thread