PREVIEW: bsign embeds hash and/or digital signature in ELF files
Stainless Steel Rat
ratinox at peorth.gweep.net
Mon Dec 14 18:27:36 CET 1998
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
"BW" == Brian Warner <warner at lothar.com> writes:
BW> Hmm.. would there be any benefit (for a particularly paranoid system)
BW> to putting the signature-verification code in the kernel?
Not really. Assuming I can crack your system to begin with, it would not
be particularly difficult for me to build a kernel that appears to perform
validiation but does not. If I am being particularly clever, I could tweak
it such that it in fact does perform validiation for everyone but a limited
subset of users.
Anything an intruder could possibly tamper with cannot be trusted.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v0.4.5 (GNU/Linux)
Comment: For info finger gcrypt at ftp.guug.de
iD8DBQE2dZ7ngl+vIlSVSNkRAv6jAKD75zbQKyU0oFu3fDMTQmsy2b/9BgCdHLvX
1/8P30FO60fEhFFxCxVjUx8=
=2XwI
-----END PGP SIGNATURE-----
--
Rat <ratinox at peorth.gweep.net> \ When not in use, Happy Fun Ball should be
PGP Key: at a key server near you! \ returned to its special container and
GPG Key: same as my PGP 5 (DH) key \ kept under refrigeration.
More information about the Gnupg-devel
mailing list