Re: Locking Down a Linux Server

From: Jose Nazario (
Date: 01/08/02

Date: Tue, 8 Jan 2002 11:19:06 -0500 (EST)
From: Jose Nazario <>
To: Björn Eriksson <>

On Tue, 8 Jan 2002, [iso-8859-1] Björn Eriksson wrote:

> Agreed. Has, openwall or anyone else produced a kernel-
> patch which only allows signed executables to run?

immunix has a product that can do this. its very, very nice ... it uses
hash signatures to control the veracity of the executable. 'subdomain' is
the product, part of their commercial Immunix SDK.

jose nazario
                           PGP: 89 B0 81 DA 5B FD 7E 00 99 C3 B2 CD 48 A0 07 80
                                       PGP key ID 0xFD37F4E5 (

Relevant Pages

  • Re: Locking Down a Linux Server
    ... part of their commercial Immunix SDK. ... SubDomain is the product Björn was looking for -- CryptoMark is. ... I am currently writing CryptoMark 2 -- signed executables, ...
  • Immunix Secured OS 7.3 XFree86 update
    ... Patrick Volkerding for working with the patch, ... As the overflowed buffers are auto variables and the functions ... We recommend all our users upgrade to fixed packages, ... Immunix 7.3 users may use our up2date service to install fixed ...