From: Justus Pendleton <rsbac@ryoohki.net>
Subject: general questions
Date: Wed, 15 Aug 2001 00:06:34 -0400
Next Article (by Subject): Re: general questions Amon Ott
Previous Article (by Subject): Re: Gaah. forgot a question. Amon Ott
Next in Thread: Re: general questions Amon Ott
Articles sorted by: [Date]
[Author]
[Subject]
I downloaded the patch for 2.4.7 and ran make menuconfig but it there was nothing to configure...is something wrong with the current patch? When will a 2.4.8 patch be out? I looked over the documentation and played around with the rsbac-admin tools a little bit but couldn't find an answer to my next question... Sometimes I need to know more than just the program name when deciding upon permissions. Is there any way to access other information about the process and make that part of the criteria for a decision? Like program arguments, program's current working directory, time of execution...things like that. Is that possible somehow? I was also looking at the malware scanner. I think it is a pretty nifty idea but I was thinking it would be even better if it could act like tripwire. Like generate a SHA-1 hash of the executable and then check it against a database. If the hash doesn't match the expected result the kill the program and notify the user. I'm not sure how easy it would be to put SHA-1 in the kernel (well, pretty easy if you have the international kernel patch, I guess) or how easy it would be to have a decent database lookup in the kernel. Anyway, RSBAC looks very cool and I look forward to getting it up and running and seeing future development on it. Justus - To unsubscribe from the rsbac list, send a mail to majordomo@rsbac.org with unsubscribe rsbac as single line in the body.
Next Article (by Subject): Re: general questions Amon Ott
Previous Article (by Subject): Re: Gaah. forgot a question. Amon Ott
Next in Thread: Re: general questions Amon Ott
Articles sorted by: [Date]
[Author]
[Subject]