On-line judgment kernel module
Samy Al Bahra
samy at kerneled.com
Fri Oct 17 03:22:31 PDT 2003
On Thu, 16 Oct 2003 18:28:15 -0400
David Gilbert <dgilbert at dclg.ca> wrote:
> As you conjecture, a syscall-less or syscall-restricted environment
> *should* be safe ... if your syscall changes are bulletproof *_and_*
> the rest of the runtime environment is bulletproof.
Good system call policies are a WONDERFUL feature at a system
administrator's hands. There is no such thing as a syscall-less
environment but only a restricted (either at the same layer as the
system calls or above in terms of code path).
> Isn't a syscall required to finish off exit()?
Yes, consult kern_exit.c
How is this related to the discussion though? The fact is, most people
would not even want to TOUCH sys_exit and friends since there are no
real security advantages there. In otherwords, an exit system call
remains completely the same.
--
+-----------------------------------+
| Samy Al Bahra | samy at kerneled.com |
|-----------------------------------|
| B3A7 F5BE B2AE 67B1 AC4B |
| 0983 956D 1F4A AA54 47CB |
|-----------------------------------|
| http://www.kerneled.com |
+-----------------------------------+
More information about the freebsd-hackers
mailing list