Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Linux kernel Security
Special Forums Cybersecurity Linux kernel Security Post 302461036 by remi75 on Friday 8th of October 2010 09:23:19 AM
Old 10-08-2010
Quote:
Originally Posted by Vabiosis
Hey Folks,

What are the ways we can provide security to kernels.

How can I make my Kernel Unique and not allow anyone to replace my Unique kernel with a standard one.

How can i implement measures to avoid any user to replace or modify GRUB and Kernel...?

Need help on this
Thank you
yup recompile the kernel, and if you can/know how/or learn , disable ALL what is not necessary ... for example -- really just an example--- if you wont use iptables, disable ip filtering ... same with hardware drivers etc ... no RAID card, disable raid drivers ...

replace a kernel and/or grub cannot be done by a non root user .

If you mean phisically ... like when stiking the drive on another machine ...
you can have kenel/boot loader on a ReadOnly media :

usb card/stick , dvd/ cdrom / even a floppy ... (that you make readOnly Smilie )

plus you can install tripwire so you get alerted whenever some tryes to Smilie

and for a mega paranoids : do not even enable module loading Smilie because actually root-kits are modules or some rootkits are if i remember ,
so IF you can , because some drivers cant be inside the kernel , compile all the necessary drivers statically in the kernel .

as a bonus, you kernel will be faster Smilie

but dont forget , if u need some option / or driver, you will have to compile a whole new kernel that will include your new things .

so its long to prepare , but fast and secure to use (relatively)

another funny one, if u need your .config, print it and put it in a safe,
and disable it in the kernel too, otherwise it will be readable thru /proc/something i think ,
and if you are courageous, change the version number manually
so ; there will be no information about your kernel version, and how it was compiled.
From there ... there is therotically now way to break into your kernel .
Last edited by remi75; 10-08-2010 at 10:57 AM..
 

LEARN ABOUT SUNOS

grub

grub(5) 																   grub(5)

NAME

       grub - GRand Unified Bootloader software on Solaris

       The  current  release  of the Solaris operating system is shipped with the GRUB (GRand Unified Bootloader) software.  GRUB is developed and
       supported by the Free Software Foundation.

       The overview for the GRUB Manual, accessible at www.gnu.org, describes GRUB:

	      Briefly, a boot loader is the first software program that runs when a computer starts. It is responsible for loading  and  transfer-
	      ring  control  to  an operating system kernel software (such as Linux or GNU Mach). The kernel, in turn, initializes the rest of the
	      operating system (for example, a GNU [Ed. note: or Solaris] system).

	      GNU GRUB is a very powerful boot loader that can load a wide variety of free, as well as proprietary, operating systems, by means of
	      chain-loading.  GRUB  is	designed  to  address  the complexity of booting a personal computer; both the program and this manual are
	      tightly bound to that computer platform, although porting to other platforms may be addressed in the  future.  [Ed.  note:  Sun  has
	      ported GRUB to the Solaris operating system.]

	      One of the important features in GRUB is flexibility; GRUB understands filesystems and kernel executable formats, so you can load an
	      arbitrary operating system the way you like, without recording the physical position of your kernel on the disk. Thus you  can  load
	      the kernel just by specifying its file name and the drive and partition where the kernel resides.

       Among  Solaris  machines, GRUB is supported on  platforms. The GRUB software that is shipped with Solaris adds two utilities not present in
       the open-source distribution:

       bootadm(1M)

	   Enables you to manage the boot archive and make changes to the GRUB menu.

       installgrub(1M)

	   Loads the boot program from disk.

       Both of these utilities are described in Solaris man pages.

       Beyond these two Solaris-specific utilities, the GRUB software is described in the GRUB manual, a PDF version of which  is  available  from
       the Sun web site.  Available in the same location is the grub(8) open-source man page.  This man page describes the GRUB shell.

       boot(1M), bootadm(1M), installgrub(1M)

       http://www.gnu.org/software/grub

								    21 Apr 2005 							   grub(5)
All times are GMT -4. The time now is 01:16 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy