[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Checking integrity of /sbin/init from within kernel

To: "Torsten Valentin" <valentin@seculution.de>
Subject: Re: Checking integrity of /sbin/init from within kernel
From: Otto Moerbeek <otto@drijf.net>
Date: Tue, 1 Oct 2002 14:13:12 +0200
Cc: "'Jan Wildeboer'" <jan.wildeboer@gmx.de>, <misc@openbsd.org>

On Tuesday, October 1, 2002, at 01:58 PM, Torsten Valentin wrote:

> You obviously did not understand that you won't be able to decrypt the
> encrypted filesystem if you use a stock kernel, because you don't have
> the secret-key to decrypt it, because it is in my modified kernel only.

But you rely on a clever, unknown scheme to hide a secret key. Well I 
think it is well know that that is a big mistake. I just have to trust 
you that you did a good job. And even if I do think that your method is 
really clever, I can use a debugger or a logic analyzer to find the key 
or capture the data being written to the ram disk.

Otto

Follow-Ups:
- Thanks / was: RE: Checking integrity of /sbin/init from within kernel
  - From: "Torsten Valentin" <winsock2@musiker.de>

References:
- Re: Checking integrity of /sbin/init from within kernel
  - From: "Torsten Valentin" <valentin@seculution.de>

Prev by Date: Re: Checking integrity of /sbin/init from within kernel
Next by Date: Re: Ktracing chrooted Apache: file errors
Prev by thread: Re: Checking integrity of /sbin/init from within kernel
Next by thread: Thanks / was: RE: Checking integrity of /sbin/init from within kernel
Index(es):
- Date
- Thread