tech-kern archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: Secmodel_bsd44: default to "defer", not "deny"?

On Sun, Feb 24, 2008 at 09:34:27PM +0200, Elad Efrat wrote:
> Now I'm thinking, though, that this might not be necessary. To get code
> in the kernel (conventionally) you'd have to either write to /dev/kmem
> or load a module.

We might require a signature for modules at a later time. In that case
the module itself would be ~trusted.


Home | Main Index | Thread Index | Old Index