Fedora Linux Support Community & Resources Center
  #1  
Old 11th November 2009, 08:47 AM
Evil_Bert's Avatar
Evil_Bert Offline
Retired Again - Administrator
  
Join Date: Nov 2007
Location: Reality
Posts: 3,034
linuxfedorafirefox
Making it harder for rootkits
Boffins have figured out a way to defeat many rootkits:

http://www.theregister.co.uk/2009/11...it_protection/
__________________
.
Marching to the beat of his own conundrum.
Reply With Quote
  #2  
Old 11th November 2009, 08:50 AM
pete_1967 Online
Clueless in a Cuckooland
  
Join Date: Mar 2006
Location: Here now, elsewhere tomorrow.
Posts: 3,929
windows_xp_2003ie
Let's hope that technology will be available soon.
__________________
A Drink is Not Just For Christmas - SaskyCom :thumb:


“Give a man a fish; you have fed him for today. Teach a man to fish; and you have fed him for a lifetime” so now go and...
RTFM FIRST: http://docs.fedoraproject.org/ & http://rute.2038bug.com/index.html.gz
Reply With Quote
  #3  
Old 11th November 2009, 02:22 PM
aleph's Avatar
aleph Offline
Banned (for/from) behaving just like everybody else!
  
Join Date: Jul 2007
Location: Beijing, China
Posts: 1,307
linuxfedorafirefox
Hypervisor based --> much, much slower on old hardware without VT support ;(
__________________
I believe in nerditarianism. I read FedoraForum for the Fedora-related posts.
Reply With Quote
  #4  
Old 12th November 2009, 01:09 AM
Evil_Bert's Avatar
Evil_Bert Offline
Retired Again - Administrator
  
Join Date: Nov 2007
Location: Reality
Posts: 3,034
linuxfedorafirefox
Well they say it's for Guest OS's (at the moment), so I suppose their aim is server security ... were servers are expected to increasingly be run virtualised on suitable hardware.

I'm hoping the technique will flow down to memory management in regular Linux boxes at some point.
__________________
.
Marching to the beat of his own conundrum.
Reply With Quote
  #5  
Old 12th November 2009, 01:22 AM
diamond_ramsey's Avatar
diamond_ramsey Offline
Registered User
  
Join Date: Aug 2009
Posts: 752
linuxfedorafirefox
:) Evil_Bert, thank you for your posts! :)
Evil_Bert, thank you for your posts!

Quote:
Originally Posted by Evil_Bert View Post
"...
They tested the protected system against nine rootkits written for the Linux 2.6 kernel. Seven of them failed to install at all thanks to the memory protection, while the remaining two failed to hide themselves because of the hook indirection.
..."

Most excellent!!!

From research good things will come in time.
__________________
2 dual cores, 11 GB RAM, F14 Laughlin - 2.6.35.14-106.fc14.x86_64 & 2.6.35.14-106.fc14.i686.PAE
2 dual cores, 11 GB RAM, F15 Lovelock - 2.6.43.8-2.fc15.x86_64 & 2.6.43.8-2.fc15.i686
3 dual cores, 19 GB RAM, F16 Verne - 3.6.2-1.fc16.x86_64 & 3.6.2-1.fc16.i686
2 dual cores, 11 GB RAM, F17 Beefy Miracle - 3.6.2-4.fc17.x86_64 / .i686
16 x86_64 computing cores,80 GB RAM & 8 SATA Seagate 7200.12 500 GB harddisks
Reply With Quote
  #6  
Old 12th November 2009, 04:22 AM
Dies Offline
Registered User
  
Join Date: Oct 2006
Posts: 4,752
linuxfedorafirefox
Quote:
Originally Posted by diamond_ramsey View Post
From research good things will come in time.
From experience, interested parties will work around it.
Reply With Quote
Reply

« Previous Thread | Next Thread »
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Attack Sneaks Rootkits Into Linux Kernel Magickman Security and Privacy 1 8th May 2009 03:12 AM
New Attack Sneaks Rootkits Into Linux Kernel dragonbite Linux Chat 5 15th April 2009 07:32 PM
Can't log in after making changes. phoebetor Using Fedora 5 21st February 2009 12:03 PM
whats harder o-ren Wibble 21 3rd March 2005 02:48 AM


Current GMT-time: 17:28 (Thursday, 23-05-2013)

TopSubscribe to XML RSS for all Threads in all ForumsFedoraForumDotOrg Archive
logo

All trademarks, and forum posts in this site are property of their respective owner(s).
FedoraForum.org is privately owned and is not directly sponsored by the Fedora Project or Red Hat, Inc.
Privacy Policy | Term of Use | Posting Guidelines | Archive | Contact Us | Founding Members

Powered by vBulletin® Copyright ©2000 - 2012, vBulletin Solutions, Inc.

 FedoraForum is Powered by RedHat