Language Selection

English French German Italian Portuguese Spanish

Kernel Log - Coming in 3.7 (Part 3): Infrastructure

Filed under
Linux

Linux 3.7 can sign kernel modules and verify those signatures and, therefore, the integrity of the modules before loading them (1, 2, 3, 4, 5, 6, 7). Some enterprise distributions have had similar features for a while – for example, to ensure that the modules used for troubleshooting are really from the distribution kernel. Developers have been working on integrating the functionality into Linux as some distributions want to load only signed kernel modules when booted with UEFI secure boot – this is now possible with the integrated code.

Another new feature is the integrity appraisal extension for the Integrity Measurement Architecture (IMA), which the kernel has supported for quite some time now (1, 2). IMA can store signed hashes for files and use them to recognise when binaries from the Linux installation have been changed.

rest here




More in Tux Machines

Today in Techrights

A soft push for the fairer sex

International Centre for Free and Open Source Software (ICFOSS), an autonomous institution under Government of Kerala and Society for Promotion of Alternative Computing and Employment (SPACE), an NGO promoting free software, have been conducting ‘Women Hackers,’ a project to bring more women into free software. The programme involves intensive residential workshops on college campuses. It was during one such hackathon that the idea for ‘I install’ was put forward by the students of LBS College of Engineering, Kasaragod. A GNU/Linux installation camp, the event aims to promote the idea of taking control over the technology that you use. Those students who received training at the hackathon will be part of ‘I install’ where they impart their learning to other students. Read more

The Linux Kernel Is Still Rectifying The Year 2038 Problem

The Linux kernel is still working to rectify the Year 2038 problem whereby the time values stored as signed 32-bit integers will wrap around. If you somehow are not familiar with the Year 2038 "Y2038" problem, you can learn more via Wikipedia. The Linux kernel has been receiving fixes and workarounds for years now through many Y2038 commits to work through the many different areas of the kernel that are relying upon 32-bit signed ints for storing time values. With Linux 4.15, this work has continued. Read more

Linux 4.15 Is A Huge Update For Both AMD CPU & Radeon GPU Owners

Linux 4.15 is shaping up to be a massive kernel release and we are just half-way through its merge window period. But for AMD Linux users especially, the 4.15 kernel release is going to be rocking. Whether you are using AMD processors and/or AMD Radeon graphics cards, Linux 4.15 is a terrific way to end of the year. There are a number of improvements to make this release great for AMD customers. Read more