Re: Direct access to hardware

• Messages sorted by: [ date ][ thread ][ subject ][ author ]
• Next message: Khimenko Victor: "Re: TO HELL WITH IT THEN......(re: disk-destroyer.c)"
• Previous message: Stephen Frost: "Re: Disk Destroyer, Cpu Reflashing, Root Security in General"
• Maybe in reply to: Ville Herva: "Direct access to hardware"
• Next in thread: Khimenko Victor: "Re: Direct access to hardware"
• Next in thread: Bartlomiej Zolnierkiewicz: "Re: TO HELL WITH IT THEN......(re: disk-destroyer.c)"

What's the point?

If the system is secure, then adding sanity checking to the ATA code
makes no difference: nobody gets to do anything improper anyway.

If the system is not secure, then adding sanity checking to the ATA code
makes no difference: people who could use the ATA thing can use other
things that are much more insidious.

The mechanism that everybody wants is _already_ there. It's called
"permissions". No new driver code necessary.

If those permissions do not work, then they don't work, and adding
last-minute band-aids makes no difference.

Just as a comparison, look at Windows. It takes the opposite approach:
it has no real seurity, but a LOT of band-aids to avoid the "obvious"
holes. Leaving it wide open.

Linus

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

• Next message: Khimenko Victor: "Re: TO HELL WITH IT THEN......(re: disk-destroyer.c)"
• Previous message: Stephen Frost: "Re: Disk Destroyer, Cpu Reflashing, Root Security in General"
• Maybe in reply to: Ville Herva: "Direct access to hardware"
• Next in thread: Khimenko Victor: "Re: Direct access to hardware"
• Next in thread: Bartlomiej Zolnierkiewicz: "Re: TO HELL WITH IT THEN......(re: disk-destroyer.c)"