Le 2001-04-12, Alfred Perlstein écrivait :

> m: "Don't call me dude." *thwack* "The point is that if the
> workstation is untrusted, what's the stop the mallicious hacker
> from taking a read-only filehandle and swapping the top byte with
> the byte required for write access?"

The kernel could include a 'signature' in the handle, e.g. in the form of
a hash of (perm-bytes,handle-bytes,secret-key).

(But the following still holds:)

> s: "Master, this sounds like hella work!"
(plus some crypto algorithm right in kernel space...)
> m: "Ahhhh, you are correct, now get cracking!"


Thomas Quinot ** Département Informatique & Réseaux ** [EMAIL PROTECTED]
              ENST   //   46 rue Barrault   //   75634 PARIS CEDEX 13 

To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-current" in the body of the message

Reply via email to