On Wed, 28 Jul 2004 13:10:46 +1000, Daniel wrote in message <[EMAIL PROTECTED]>:
> One thing which will *not* enhance security, but is often claimed to > do so, is disabling kernel modules. Even if you don't use them, an > attacker with root privileges can still insert code into the running > kernel successfully, with the same result as loading a kernel module. ..this would requires the presence of the loadable module, or _could_ the attacker provide it? -- ..med vennlig hilsen = with Kind Regards from Arnt... ;-) ...with a number of polar bear hunters in his ancestry... Scenarios always come in sets of three: best case, worst case, and just in case.
