LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 10-01-2013, 08:33 PM   #1
muahahaha9001
LQ Newbie
 
Registered: Sep 2012
Location: Northern Virginia, USA
Distribution: Slackware, Debian, FreeBSD, Arch Linux, Ubuntu, Kubuntu, CentOS, OS X
Posts: 21

Rep: Reputation: 0
Digitally Signed Executables AKA Code Signing


Hi All,

I've been playing with Windows PowerShell at work and have gained an appreciation for how Microsoft has implemented it. Aside from being a cool environment that actually makes Windows palatable, PowerShell scripts are by default only allowed to be run when they have a trusted digital signature. I think code signing is a great idea and would love to know where this has been / can be implemented in Linux.

Linux and other FOSS have always been my #1 interest. I bring this and all it's taught me around everywhere, even to my day job. I work by day as a cyber security analyst for a mostly Windows Desktop and Windwos Server shop. Often, I get very frustrated with my Windows-Centric coworkers. It is tedious but I'm steadily introducing them all to Linux and FOSS.

Thanks,
EJR
 
Old 10-01-2013, 11:07 PM   #2
kbp
Senior Member
 
Registered: Aug 2009
Posts: 3,758

Rep: Reputation: 643Reputation: 643Reputation: 643Reputation: 643Reputation: 643Reputation: 643
The linux kernel has an option called CONFIG_MODULE_SIG_FORCE which ensures that unsigned modules cannot be inserted into a running kernel (think rootkits). There is also a lot work in progress regarding secure boot in terms of using a TPM, signed grub bootloader and signed kernels.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Just signing in to say hello and see what Linux is all about unome AKA "You Know Me") unome LinuxQuestions.org Member Intro 0 11-19-2011 04:10 PM
Only executing signed code derchris Linux - Security 5 02-23-2011 03:06 PM
Playstation 3 Code Signing Cracked For Good Jeebizz Linux - News 2 01-05-2011 02:00 PM
LXer: Code signing systems LXer Syndicated Linux News 0 12-14-2005 08:31 PM
Digitally signing emails using gnupg & thunderbird tuxrules Slackware 5 02-22-2005 10:09 AM


All times are GMT -5. The time now is 09:43 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration