RE: The disappearing sys_call_table export.

David Schwartz (davids@webmaster.com)
Sun, 11 May 2003 15:57:21 -0700


> Security requirements are heavily dependant on role and people sometimes
> forget that. Being down is bad news for an ecommerce site but in many
> other situations its infinite preferably to most other situations

This reminds me of a funny story. I was at a meeting to confirm that a
program met some requirements for an agency in Maryland with a three-letter
name. After they finally agreed that I had to *see* the requirements before
I could assert that the program met them, we came to a requirement that
said, roughly, that it must be possible to immediately stop the system from
processing any information if they lost, or suspected that they had lost,
control over it.

I pointed out to them that any software mechanism I devised for shutting
the system down would require that they had control over the system in order
to invoke the mechanism.

They thought about that for a moment and were about to find that the system
did not meet the requirements. I pointed out that anyone could pull the plug
or network cable if needed or shut the system down at the switch and that
this could be accomplished even if they lost control over the system and
would certainly stop it from sending any information. They then agreed that
the system met that requirement.

DS

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/