Re: Please read if you use x86 -current

To: "Jared D. McNeill" <jmcneill%invisible.ca@localhost>
Subject: Re: Please read if you use x86 -current
From: Thor Lancelot Simon <tls%rek.tjls.com@localhost>
Date: Wed, 12 Nov 2008 15:33:26 -0500

On Wed, Nov 12, 2008 at 02:57:53PM -0500, Jared D. McNeill wrote:
> On Wed, 12 Nov 2008, David Holland wrote:
>> So, what do you do if you want a system entirely without POSIX
>> semaphores? It looks as if you have to patch the source to avoid
>> building the module.
>
> no options MODULAR ?

What if (as I suspect David meant) I just want to exclude *some*
modules?

Linux gives you yes/no/module control at kernel config time for each
feature.  That's a start but I suspect what many want is "no feature
_X_ under any circumstances".

I think the simplest way to get that is to load a list of acceptable
modules and their hashes into the kernel at securelevel 0 during
boot and make it unchangeable when securelevel > 0.  We very nearly
have the infrastructure to do this already.

-- 
Thor Lancelot Simon                                        
tls%rek.tjls.com@localhost
    "Even experienced UNIX users occasionally enter rm *.* at the UNIX
     prompt only to realize too late that they have removed the wrong
     segment of the directory structure." - Microsoft WSS whitepaper

References:
- Please read if you use x86 -current
  - From: Andrew Doran
- Re: Please read if you use x86 -current
  - From: David Holland
- Re: Please read if you use x86 -current
  - From: Jared D. McNeill

Prev by Date: Re: Please read if you use x86 -current
Next by Date: Re: Please read if you use x86 -current
Previous by Thread: Re: Please read if you use x86 -current
Next by Thread: Re: Please read if you use x86 -current
Indexes:

Home | Main Index | Thread Index | Old Index