Process system call access list.

All of lore.kernel.org
 help / color / mirror / Atom feed

From: Bill Pringlemeir <bpringle@sympatico.ca>
To: linux-kernel@vger.kernel.org
Subject: Process system call access list.
Date: 16 Jan 2005 14:00:22 -0500	[thread overview]
Message-ID: <m2wtudqjw9.fsf@sympatico.ca> (raw)

[please CC me.]

I was looking at phrack and many of the remote exploits rely on
injecting some arbitrary code.  Generally is is something like
'exec("/bin/sh")' or something like that.

I was wondering if a section could be added to the link phase of a
user application that would keep a list/bit mask of all kernel calls
that the compiler had encountered in some section.

When the kernel loaded a process, it would keep a copy of the bit mask
and perform a comparison to see if the process was intended to make
the system call (perhaps only a sub-set of the entire system calls are
needed).

Of course, I imagine there is some reason that a process would like to
dynamically create it's own code [although it wouldn't be the
majority?], so the bit mask could be set to all ones via some linker
magic when building the user application.

Generally it would help protect against remote code injection and some
possible privilege elevation exploits by restricting system calls.  On
the down side, it is probably not fool proof and might give people a
false sense of security.  So perhaps it is not a good feature for the
kernel to have.

Sorry if this has been discussed before.  Unlike disk encryption, I
couldn't find a reference to this topic, but maybe my search was using
the wrong nomenclature.  The susinct question would be is this worth
implementing?

tia,
Bill Pringlemeir.

next             reply	other threads:[~2005-01-16 18:59 UTC|newest]

Thread overview: 2+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2005-01-16 19:00 Bill Pringlemeir [this message]
2005-01-16 19:07 ` Process system call access list Willy Tarreau

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=m2wtudqjw9.fsf@sympatico.ca \
    --to=bpringle@sympatico.ca \
    --cc=linux-kernel@vger.kernel.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.