View Single Post
Old 31 July 2015, 21:27   #126
son of 68k
meynaf's Avatar
Join Date: Nov 2007
Location: Lyon / France
Age: 45
Posts: 2,906
Originally Posted by Mrs Beanbag View Post
It really does... it would be easy to sign your own code with your own private key, and then the Kernel would just be able to run it (above the level of the MMU), but no malicious code would be able to run in the Kernel if you hadn't signed it. It seems to me like a good solution to the problem... unless i have really misunderstood the point of it.

Code you don't need to run in Kernel space runs as normal, however.
Well, it might be an option... but only an option. I have signed code in my life before and it wasn't a great experience.

Originally Posted by Mrs Beanbag View Post
Sorry but i don't like the idea

What sort of things would you do in such a mode? You would be crazy to use your computer for normal things. Maybe it would be useful for OS development but you didn't seem interested in that. You should certainly not have any network connection in this mode! Or run anything you don't 100% trust!

To come back to the thing i said that started us off on this whole line of argument... there are perfectly sane reasons not to do this.
If you don't like the idea, if you see no interest in it, well, just keep the memory protection on. I won't ask you to do otherwise, you know
meynaf is offline  
Page generated in 0.03962 seconds with 10 queries