| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20090619201159.35d259bb@lxorguk.ukuu.org.uk> Date: Fri, 19 Jun 2009 20:11:59 +0100 From: Alan Cox <alan@...rguk.ukuu.org.uk> To: Valdis.Kletnieks@...edu Cc: Pavel Machek <pavel@....cz>, James Morris <jmorris@...ei.org>, Joseph Cihula <joseph.cihula@...el.com>, Ingo Molnar <mingo@...e.hu>, linux-kernel@...r.kernel.org, arjan@...ux.intel.com, hpa@...or.com, andi@...stfloor.org, Chris Wright <chrisw@...s-sol.org>, jbeulich@...ell.com, peterm@...hat.com, gang.wei@...el.com, shane.wang@...el.com Subject: Re: [RFC v4][PATCH 2/2] intel_txt: Intel(R) TXT and tboot kernel support > "Somebody has screwed with this kernel image, and you're not booting what you > thought you were booting." So I screw with your user space - you can't measure enough to make it save you in a general setup. Too much I can hit changes each boot. For a tiny number of very special cases that are highly controlled it has potential uses. Some of those are evil some are ones with meaningful uses (eg ATM machines) - although attacks there have included hardware attacks outside the PC components too. Personally (and I'm sure Intel disagrees with me) my bigger work is that I can't verify that the magic block of code for tboot is correct. -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists