Subject: Re: verified executable kernel modification committed
To: Roland Dowdeswell <>
From: Brett Lymn <>
List: tech-security
Date: 10/31/2002 22:53:53
On Thu, Oct 31, 2002 at 12:58:23AM -0500, Roland Dowdeswell wrote:
> Only if you hack your kernel to not execute files which do not have
> the schg flag set.  Otherwise, what's to stop you from executing
> other files?

Yes, this was one of the major motivators for me - how to only execute
files that are "known good", not only from the point of view of not
being tampered with but also whether the file should be there in the
first place.

Brett Lymn