PHWinfo - Afficher un message

08/10/2006, 04h01

Randy Yates <yates@ieee.org> writes:

> Todd et al.,
>
> Here's another idea for bolstering security. From my infantile
> understanding of root kits, they "infect" either the tools
> used to detect security problems (ps, lsof, etc.) or the
> operating system kernel itself, or both.
>
> If the key components of at least the kernel could be burned
> into read-only memory, then there would always be some basic
> kernel-level utilities that could be guaranteed to never get
> owned.

Yup. Soekris sells cool little boxes where the the OS goes onto flash
memory. Or you can run off a CD on some distros of firewalls that
include this stuff.

> I'm just tired of these assholes gunning for my machine,
> and frankly I think I'm smarter than they are. After all,
> I have PHYSICAL access to the machine - they don't!

Randy, openbsd may just be your OS. :-)

--
Todd H.
http://www.toddh.net/

08/10/2006, 04h01	#2
Todd H. Messages: n/a Hébergeur:	Re: OT: security device Randy Yates <yates@ieee.org> writes: > Todd et al., > > Here's another idea for bolstering security. From my infantile > understanding of root kits, they "infect" either the tools > used to detect security problems (ps, lsof, etc.) or the > operating system kernel itself, or both. > > If the key components of at least the kernel could be burned > into read-only memory, then there would always be some basic > kernel-level utilities that could be guaranteed to never get > owned. Yup. Soekris sells cool little boxes where the the OS goes onto flash memory. Or you can run off a CD on some distros of firewalls that include this stuff. > I'm just tired of these assholes gunning for my machine, > and frankly I think I'm smarter than they are. After all, > I have PHYSICAL access to the machine - they don't! Randy, openbsd may just be your OS. :-) -- Todd H. http://www.toddh.net/