Re: Versioning file system

Score:

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

To: John Stoffel <john@...>

Cc: Erik Mouw <mouw@...>, Theodore Tso <tytso@...>, alan <alan@...>, J?rn Engel <joern@...>, H. Peter Anvin <hpa@...>, Jack Stone <jack@...>, <linux-kernel@...>, <linux-fsdevel@...>, <akpm@...>, <viro@...>

Subject: Re: Versioning file system

Date: Thursday, July 5, 2007 - 10:23 am

On Thu, 5 Jul 2007 09:57:40 -0400
"John Stoffel" <john@stoffel.org> wrote:

quoted text> >>>>> "Erik" == Erik Mouw <mouw@nl.linux.org> writes:
> 
> Erik> (sorry for the late reply, just got back from holiday)
> Erik> On Mon, Jun 18, 2007 at 01:29:56PM -0400, Theodore Tso wrote:
> >> As I mentioned in my Linux.conf.au presentation a year and a half
> >> ago, the main use of Streams in Windows to date has been for system
> >> crackers to hide trojan horse code and rootkits so that system
> >> administrators couldn't find them.  :-)
> 
> Erik> The only valid use of Streams in Windows I've seen was a virus
> Erik> checker that stored a hash of the file in a separate
> Erik> stream. Checking a file was a matter of rehashing it and
> Erik> comparing against the hash stored in the special hash data
> Erik> stream for that particular file.
> 
> So what was stopping a virus from infecting a file, re-computing the
> hash and pushing the new hash into the stream?  
> 
> You need to keep the computed hashes on Read-Only media for true
> security, once you let the system change them, then you're toast....

I'm not a huge fan of streams, but I'm pretty sure there are various
encryption tools that let us verify and validate the source of data.
It's entirely possible the virus checker wasn't doing it right, but
storing verification info in an EA or stream isn't entirely invalid.

You still need an external key that you do trust of course.

-chris
-
To unsubscribe from this list: send the line "unsubscribe linux-fsdevel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

Versioning file system, Jack Stone, (Fri Jun 15, 6:23 pm)

Re: Versioning file system, Kok, Auke, (Fri Jun 15, 6:57 pm)

Re: Versioning file system, alan, (Fri Jun 15, 7:01 pm)

Re: Versioning file system, Chris Snook, (Fri Jun 15, 6:52 pm)

Re: Versioning file system, Jack Stone, (Sat Jun 16, 4:25 am)

Re: Versioning file system, Chris Snook, (Tue Jun 19, 2:03 pm)

Re: Versioning file system, Lennart Sorensen, (Tue Jun 19, 4:43 pm)

Re: Versioning file system, Bryan Henderson, (Tue Jun 19, 7:35 pm)

Re: Versioning file system, Trond Myklebust, (Tue Jun 19, 8:27 pm)

Re: Versioning file system, Bryan Henderson, (Wed Jun 20, 1:04 pm)

Re: Versioning file system, Chris Snook, (Wed Jun 20, 1:33 pm)

Re: Versioning file system, H. Peter Anvin, (Wed Jun 20, 1:10 pm)

Re: Versioning file system, H. Peter Anvin, (Wed Jun 20, 1:00 am)

Re: Versioning file system, , (Tue Jun 19, 6:07 pm)

Re: Versioning file system, Lennart Sorensen, (Tue Jun 19, 6:21 pm)

Re: Versioning file system, H. Peter Anvin, (Tue Jun 19, 6:13 pm)

Re: Versioning file system, Jan Harkes, (Tue Jun 19, 7:07 pm)

Re: Versioning file system, H. Peter Anvin, (Tue Jun 19, 7:12 pm)

Re: Versioning file system, H. Peter Anvin, (Tue Jun 19, 3:08 pm)

Re: Versioning file system, Alan Cox, (Tue Jun 19, 5:50 pm)

Re: Versioning file system, H. Peter Anvin, (Tue Jun 19, 6:07 pm)

Re: Versioning file system, Ph. Marek, (Wed Jun 20, 4:05 am)

Re: Versioning file system, Jack Stone, (Tue Jun 19, 3:12 pm)

Re: Versioning file system, Bernd Petrovitsch, (Wed Jun 20, 4:34 am)

Re: Versioning file system, Chris Snook, (Tue Jun 19, 4:10 pm)

Re: Versioning file system, Jack Stone, (Tue Jun 19, 4:14 pm)

Re: Versioning file system, Chris Snook, (Tue Jun 19, 4:31 pm)

Re: Versioning file system, H. Peter Anvin, (Tue Jun 19, 3:15 pm)

Re: Versioning file system, Jack Stone, (Tue Jun 19, 3:22 pm)

Re: Versioning file system, Jack Stone, (Tue Jun 19, 3:06 pm)

Re: Versioning file system, Chris Snook, (Tue Jun 19, 4:03 pm)

Re: Versioning file system, Jack Stone, (Tue Jun 19, 4:08 pm)

Re: Versioning file system, John Stoffel, (Tue Jun 19, 4:34 pm)

Re: Versioning file system, Matthew Wilcox, (Tue Jun 19, 4:38 pm)

Re: Versioning file system, John Stoffel, (Tue Jun 19, 5:02 pm)

Re: Versioning file system, Jack Stone, (Tue Jun 19, 4:38 pm)

Re: Versioning file system, Chris Snook, (Tue Jun 19, 4:15 pm)

Re: Versioning file system, Jack Stone, (Tue Jun 19, 4:27 pm)

Re: Versioning file system, H. Peter Anvin, (Fri Jun 15, 6:38 pm)

Re: Versioning file system, alan, (Fri Jun 15, 6:51 pm)

Re: Versioning file system, Bryan Henderson, (Mon Jun 18, 11:51 am)

Re: Versioning file system, Jack Stone, (Mon Jun 18, 12:37 pm)

Re: Versioning file system, Bryan Henderson, (Mon Jun 18, 1:56 pm)

Re: Versioning file system, Kyle Moffett, (Mon Jun 18, 11:10 pm)

Re: Versioning file system, Martin Langhoff, (Tue Jun 19, 5:09 am)

Re: Versioning file system, Bron Gondwana, (Tue Jun 19, 3:58 am)

Re: Versioning file system, Kyle Moffett, (Tue Jun 19, 10:43 pm)

Re: Versioning file system, Jack Stone, (Tue Jun 19, 3:49 am)

Re: Versioning file system, H. Peter Anvin, (Mon Jun 18, 12:56 pm)

Re: Versioning file system, Jörn, (Sat Jun 16, 10:53 am)

Re: Versioning file system, Andreas Dilger, (Mon Jun 18, 5:45 am)

Re: Versioning file system, Sorin Faibish, (Sat Sep 29, 1:44 pm)

Re: Versioning file system, Chris Mason, (Mon Jun 18, 11:32 am)

Re: Versioning file system, Bron Gondwana, (Mon Jun 18, 7:18 pm)

Re: Versioning file system, Theodore Tso, (Mon Jun 18, 10:01 am)

Re: Versioning file system, alan, (Mon Jun 18, 12:16 pm)

Re: Versioning file system, Theodore Tso, (Mon Jun 18, 1:29 pm)

Re: Versioning file system, Erik Mouw, (Wed Jul 4, 1:32 pm)

Re: Versioning file system, John Stoffel, (Thu Jul 5, 9:57 am)

Re: Versioning file system, Erik Mouw, (Thu Jul 5, 1:57 pm)

Re: Versioning file system, Chris Mason, (Thu Jul 5, 10:23 am)

Re: Versioning file system, Theodore Tso, (Wed Jul 4, 4:47 pm)

Re: Versioning file system, Erik Mouw, (Thu Jul 5, 1:55 pm)

Re: Versioning file system, Jeremy Allison, (Mon Jun 18, 1:33 pm)

Re: Versioning file system, Theodore Tso, (Mon Jun 18, 4:30 pm)

Re: Versioning file system, J. Bruce Fields, (Mon Jun 18, 4:50 pm)

Re: Versioning file system, H. Peter Anvin, (Mon Jun 18, 1:46 pm)

Re: Versioning file system, Jörn, (Mon Jun 18, 6:13 am)

Re: Versioning file system, Jack Stone, (Mon Jun 18, 5:54 am)

Re: Versioning file system, Jack Stone, (Sat Jun 16, 4:11 am)

Re: Versioning file system, Jeffrey V. Merkey, (Sat Jun 16, 5:46 am)

Re: Versioning file system, Jeffrey V. Merkey, (Sat Jun 16, 6:12 am)

Re: Versioning file system, Jan Harkes, (Sat Jun 16, 12:49 pm)

Re: Versioning file system, Jeffrey V. Merkey, (Sat Jun 16, 4:03 pm)

Re: Versioning file system, Dale Amon, (Sat Jun 16, 5:06 pm)

Re: Versioning file system, Jan Harkes, (Sat Jun 16, 4:39 pm)

Re: Versioning file system, Alan Cox, (Sat Jun 16, 6:17 pm)

Re: Versioning file system, Dale Amon, (Sun Jun 17, 6:11 pm)

Re: Versioning file system, Jeffrey V. Merkey, (Sat Jun 16, 10:18 pm)

Re: Versioning file system, Jeffrey V. Merkey, (Sat Jun 16, 10:39 pm)

Re: Versioning file system, Jack Stone, (Sat Jun 16, 4:43 pm)

Re: Versioning file system, Alan Cox, (Sat Jun 16, 4:08 pm)

Re: Versioning file system, Jeffrey V. Merkey, (Sat Jun 16, 5:25 pm)

Re: Versioning file system, Jack Stone, (Sat Jun 16, 3:38 pm)

Re: Versioning file system, Mark Williamson, (Sat Jun 16, 9:15 am)

Re: Versioning file system, Jeffrey V. Merkey, (Sat Jun 16, 3:57 pm)

Re: Versioning file system, H. Peter Anvin, (Fri Jun 15, 6:59 pm)

Re: Versioning file system, alan, (Fri Jun 15, 7:06 pm)


linux-kernel:
david	Re: Linux 2.6.27-rc8
Mikulas Patocka	LFENCE instruction (was: [rfc][patch 3/3] x86: optimise barriers)
Karl Meyer	PROBLEM: 2.6.23-rc "NETDEV WATCHDOG: eth0: transmit timed out"
Robin Lee Powell	NFS hang + umount -f: better behaviour requested.
git:
Elijah Newren	Trying to use git-filter-branch to compress history by removing large, obsolete bi...
Matthieu Moy	git push to a non-bare repository
Dave Jones	Re: [howto] Kernel hacker's guide to git, updated
Linus Torvalds	Re: Git clone error
openbsd-misc:
Darrian Hale	Re: uvm_mapent_alloc: out of static map entries on 4.3 i386
J.W. Zondag	Dell PE1950 III - Perc 6i
Richard Stallman	Real men don't attack straw men
Robert Warning	Problem with Intel Pro/1000 PT
linux-netdev:
David Miller	Re: [PATCH] pkt_sched: Destroy gen estimators under rtnl_lock().
Gerrit Renker	Re: [PATCH 04/37] dccp: Per-socket initialisation of feature negotiation
Jeff Kirsher	[PATCH 1/3] e1000e: add support for the 82567LM-4 device
Eric Dumazet	Re: [RFC,PATCH] loopback: calls netif_receive_skb() instead of netif_rx()


Calling functions from system call	2 hours ago	Linux kernel
drivers for motherboard d101ggc	8 hours ago	Linux general
Tune CFS for htpc usage to decoding HD 1080p x264 video streams	20 hours ago	Linux kernel
How to write in kernel memory	22 hours ago	Linux kernel
linux_wrappers.c:306: error: unknown field ‘nopage’ specified in initializer	22 hours ago	Linux kernel
Packet Replay Check	1 day ago	FreeBSD
Cannot rdr from internal network to a squid proxy running on pf bridge firewall.	1 day ago	OpenBSD
Cannot compile kernel modules	1 day ago	Linux kernel
Intelligent enclosure (SES, SAF-TE) monitoring & configuration	3 days ago	Applications and Utilities
I/O operations	3 days ago	Linux kernel

Re: Versioning file system

Online users