LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Security (https://www.linuxquestions.org/questions/linux-security-4/)
-   -   "Linux Kernel Finally Gets Its Lockdown" (https://www.linuxquestions.org/questions/linux-security-4/linux-kernel-finally-gets-its-lockdown-4175662047/)

jamison20000e 10-05-2019 04:50 AM
"Linux Kernel Finally Gets Its Lockdown"
 
Quote:
There are two lockdown modes: integrity and confidentiality
https://itsfoss.com/linux-kernel-5-4/
Quote:
In news that has been a long time in coming, chief Linux maintainer Linus Torvalds has finally approved a new security feature, the Linux Security Module (LSM, nicknamed “lockdown”) to be part of the 5.4 branch of the Linux kernel. Although the feature will be turned off by default — out of fear it might break existing systems — it does promise to bring additional security to one of the most widely-used and hardened kernels on the market.

How Does It Work?

The lockdown feature’s aim is to restrict various pieces of kernel functionality. ...
https://thenewstack.io/linux-kernel-...-its-lockdown/

More tools for servers, any thoughts?

berndbausch 10-05-2019 10:04 PM
Quote:
Originally Posted by jamison20000e (Post 6044053)
More tools for servers, any thoughts?
thenewstack.io is not entirely correct. LSM has been in the kernel since 2.6 (year 2003, see the Wikipedia article). After all, SELinux and other frameworks have been relying on it for ages. Obviously, the writer confused LSM with the new lockdown feature.


All times are GMT -5. The time now is 04:59 PM.