Need some security advice for systemtap
Frank Ch. Eigler
fche at redhat.com
Tue Jun 5 15:08:59 UTC 2007
Tomasz Chmielewski <mangoo at wpkg.org> writes:
> Am I right? Is it security based on md5sum? [...]
> http://www.cits.rub.de/MD5Collisions/
Indeed.
md5 was just a "for sake of argument" possibility. We can go with a
different or even multiple hashes. Or, if hashes are deemed
untrustworthy in some particular installation,
/etc/systemtap/authorized_probes could contain copies of the probe
modules in their entirety rather than their hashes.
- FChE
More information about the Fedora-security-list
mailing list