[lug] newbie question - rc.sysinit

[Chris Riddoch]

<snip>

Having followed this, and a couple other threads for a while, the idea
of having signatures on kernel modules sounds almost feasable, except
for a couple problems...

Someone with root access can look at any area of memory or the hard
drive.  The private key has to be kept somewhere... and the
passphrase, too, if you expect modules to be able to autoload without
the administrator sitting in front of the keyboard.

Seems that the best way to really be secure about this would be to
build a kernel *without* module support.  Is anybody quite sure that
this would completely remove the ability to add modules?

Even then, I suppose, the infinitely-capable adversary could
binary-patch the kernel's area of memory while it's running. Heh.

--
Chris Riddoch         |  epistemological
socket at peakpeak.com   |  humility