NHacker Next
  • new
  • past
  • show
  • ask
  • show
  • jobs
  • submit
Reviving the modprobe_path Technique: Overcoming search_binary_handler() Patch (blog.theori.io)
8 points by todsacerdoti 328 days ago | 3 comments
sour-taste 325 days ago [-]
Does anyone know why modprobe_path isn't in read only memory? Would just making it const char be enough to avoid this technique?
sour-taste 325 days ago [-]
Oh, it's because it can be set by /proc/sys/kernel/modprobe
rfoo 325 days ago [-]
There is CONFIG_STATIC_USERMODEHELPER that disables the sysctl you mentioned and actually make modprobe_path read-only.
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact
Rendered at 06:40:40 GMT+0000 (Coordinated Universal Time) with Vercel.