On Mon, Dec 01, 2003 at 12:00:07PM +1300, Jim Cheetham wrote: > I was considering banning loadable modules, to increase protection > against r00tkits ...
You can load a module that disables any later module loading to achieve
the same sort of thing. It's totally pointless, though, because root
can still write to kernel memory and load modules/patch the kernel that
way. Disabling moduling loading makes very little difference.
Cheers,
-mjg
--
Matthew Gregan |/
/| [EMAIL PROTECTED]
