grsecurity forums


https://forums.grsecurity.net./

T -> trojaned code

https://forums.grsecurity.net./viewtopic.php?f=3&t=632

Page 1 of 1

T -> trojaned code

PostPosted: Sat Dec 20, 2003 7:43 pm
by skruq
I just wanna know what the T option (Ensures this process can never execute any trojaned code) exactly does. Does it means that there is a hash function calculate on the binary and it is verified each time we execute the binary to be sure that its not a trojaned binary?
Thanks

Re: T -> trojaned code

PostPosted: Mon Dec 22, 2003 8:42 am
by PaX Team
skruq wrote:I just wanna know what the T option (Ensures this process can never execute any trojaned code) exactly does. Does it means that there is a hash function calculate on the binary and it is verified each time we execute the binary to be sure that its not a trojaned binary?
no, this is not runtime verification but rather a check of the ACLs before they're loaded into the kernel. the T subject flag ensures that there're no executable objects of the given subject that are writable by other subjects/objects. that is, you can guarantee that the given subject cannot execute code that could have been modified by another.

PostPosted: Mon Dec 22, 2003 5:52 pm
by skruq
Thanks for the clear&complete answer and thanks for your great work (PaX), it helps me sleeping better each night :)
Cya
All times are UTC - 5 hours [ DST ]
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Group
https://www.phpbb.com/