Subject: Re: verified executable kernel modification committed
To: Chris Jepeway <>
From: Perry E. Metzger <>
List: tech-security
Date: 10/31/2002 10:24:04
Chris Jepeway <> writes:
> Apologies if this conversation is supposed to be moving elsewhere...
> > to stop someone else who may choose to have their file executable on
> > your machine something like a DDoS zombie.
> OK, so verified execs stop rootkits from running?

Oh, also, keep in mind, neither verexec nor immutable flags will stop
you from doing a buffer overflow attack or what have you.

> How can chflags do that?

Perry E. Metzger