Whitelist Before Execution
Jason C. Wells
jcw at highperformance.net
Sun Jul 12 22:30:03 UTC 2009
Is there a method by which we can check the consistency of an executable
or library prior to trusting it for execution? For example, if the file
doesn't exist in the list of trusted files or the checksums do not match
then do not allow execution and write a warning message to the log. I
could do this manually with existing features like mtree. It would be
nice if the system could do it for me.
Later,
Jason
More information about the freebsd-chat
mailing list