Go Job Hunting at the LQ Job Marketplace
Go Back > Forums > Linux Forums > Linux - Security
User Name
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.


  Search this Thread
Old 10-01-2013, 09:33 PM   #1
LQ Newbie
Registered: Sep 2012
Location: Northern Virginia, USA
Distribution: Slackware, Debian, FreeBSD, Arch Linux, Ubuntu, Kubuntu, CentOS, OS X
Posts: 21

Rep: Reputation: 0
Digitally Signed Executables AKA Code Signing

Hi All,

I've been playing with Windows PowerShell at work and have gained an appreciation for how Microsoft has implemented it. Aside from being a cool environment that actually makes Windows palatable, PowerShell scripts are by default only allowed to be run when they have a trusted digital signature. I think code signing is a great idea and would love to know where this has been / can be implemented in Linux.

Linux and other FOSS have always been my #1 interest. I bring this and all it's taught me around everywhere, even to my day job. I work by day as a cyber security analyst for a mostly Windows Desktop and Windwos Server shop. Often, I get very frustrated with my Windows-Centric coworkers. It is tedious but I'm steadily introducing them all to Linux and FOSS.

Old 10-02-2013, 12:07 AM   #2
Senior Member
Registered: Aug 2009
Posts: 3,790

Rep: Reputation: 650Reputation: 650Reputation: 650Reputation: 650Reputation: 650Reputation: 650
The linux kernel has an option called CONFIG_MODULE_SIG_FORCE which ensures that unsigned modules cannot be inserted into a running kernel (think rootkits). There is also a lot work in progress regarding secure boot in terms of using a TPM, signed grub bootloader and signed kernels.


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Just signing in to say hello and see what Linux is all about unome AKA "You Know Me") unome Member Intro 0 11-19-2011 05:10 PM
Only executing signed code derchris Linux - Security 5 02-23-2011 04:06 PM
Playstation 3 Code Signing Cracked For Good Jeebizz Linux - News 2 01-05-2011 03:00 PM
LXer: Code signing systems LXer Syndicated Linux News 0 12-14-2005 09:31 PM
Digitally signing emails using gnupg & thunderbird tuxrules Slackware 5 02-22-2005 11:09 AM

All times are GMT -5. The time now is 02:09 AM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration