Re: Need some security advice for systemtap

[fche@xxxxxxxxxx (Frank Ch. Eigler)]

Tomasz Chmielewski <mangoo@xxxxxxxx> writes:

> Am I right? Is it security based on md5sum? [...]
> http://www.cits.rub.de/MD5Collisions/

Indeed.

md5 was just a "for sake of argument" possibility.  We can go with a
different or even multiple hashes.  Or, if hashes are deemed
untrustworthy in some particular installation,
/etc/systemtap/authorized_probes could contain copies of the probe
modules in their entirety rather than their hashes.

- FChE

--
Fedora-security-list mailing list
Fedora-security-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-security-list