Re: Versioning file system

Score:

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

To: John Stoffel <john@...>

Cc: Erik Mouw <mouw@...>, Theodore Tso <tytso@...>, alan <alan@...>, J?rn Engel <joern@...>, H. Peter Anvin <hpa@...>, Jack Stone <jack@...>, <linux-kernel@...>, <linux-fsdevel@...>, <akpm@...>, <viro@...>

Subject: Re: Versioning file system

Date: Thursday, July 5, 2007 - 10:23 am

On Thu, 5 Jul 2007 09:57:40 -0400
"John Stoffel" <john@stoffel.org> wrote:

quoted text> >>>>> "Erik" == Erik Mouw <mouw@nl.linux.org> writes:
> 
> Erik> (sorry for the late reply, just got back from holiday)
> Erik> On Mon, Jun 18, 2007 at 01:29:56PM -0400, Theodore Tso wrote:
> >> As I mentioned in my Linux.conf.au presentation a year and a half
> >> ago, the main use of Streams in Windows to date has been for system
> >> crackers to hide trojan horse code and rootkits so that system
> >> administrators couldn't find them.  :-)
> 
> Erik> The only valid use of Streams in Windows I've seen was a virus
> Erik> checker that stored a hash of the file in a separate
> Erik> stream. Checking a file was a matter of rehashing it and
> Erik> comparing against the hash stored in the special hash data
> Erik> stream for that particular file.
> 
> So what was stopping a virus from infecting a file, re-computing the
> hash and pushing the new hash into the stream?  
> 
> You need to keep the computed hashes on Read-Only media for true
> security, once you let the system change them, then you're toast....

I'm not a huge fan of streams, but I'm pretty sure there are various
encryption tools that let us verify and validate the source of data.
It's entirely possible the virus checker wasn't doing it right, but
storing verification info in an EA or stream isn't entirely invalid.

You still need an external key that you do trust of course.

-chris
-
unsubscribe noticeTo unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

Versioning file system, Jack Stone, (Fri Jun 15, 6:23 pm)

Re: Versioning file system, Kok, Auke, (Fri Jun 15, 6:57 pm)

Re: Versioning file system, alan, (Fri Jun 15, 7:01 pm)

Re: Versioning file system, Johannes Weiner, (Sat Jun 16, 7:20 am)

Re: Versioning file system, Chris Snook, (Fri Jun 15, 6:52 pm)

Re: Versioning file system, Jack Stone, (Sat Jun 16, 4:25 am)

Re: Versioning file system, Chris Snook, (Tue Jun 19, 2:03 pm)

Re: Versioning file system, Lennart Sorensen, (Tue Jun 19, 4:43 pm)

Re: Versioning file system, Bryan Henderson, (Tue Jun 19, 7:35 pm)

Re: Versioning file system, Trond Myklebust, (Tue Jun 19, 8:27 pm)

Re: Versioning file system, Bryan Henderson, (Wed Jun 20, 1:04 pm)

Re: Versioning file system, Chris Snook, (Wed Jun 20, 1:33 pm)

Re: Versioning file system, H. Peter Anvin, (Wed Jun 20, 1:10 pm)

Re: Versioning file system, H. Peter Anvin, (Wed Jun 20, 1:00 am)

Re: Versioning file system, , (Tue Jun 19, 6:07 pm)

Re: Versioning file system, Lennart Sorensen, (Tue Jun 19, 6:21 pm)

Re: Versioning file system, H. Peter Anvin, (Tue Jun 19, 6:13 pm)

Re: Versioning file system, Jan Harkes, (Tue Jun 19, 7:07 pm)

Re: Versioning file system, H. Peter Anvin, (Tue Jun 19, 7:12 pm)

Re: Versioning file system, H. Peter Anvin, (Tue Jun 19, 3:08 pm)

Re: Versioning file system, Alan Cox, (Tue Jun 19, 5:50 pm)

Re: Versioning file system, H. Peter Anvin, (Tue Jun 19, 6:07 pm)

Re: Versioning file system, Ph. Marek, (Wed Jun 20, 4:05 am)

Re: Versioning file system, Jack Stone, (Tue Jun 19, 3:12 pm)

Re: Versioning file system, Bernd Petrovitsch, (Wed Jun 20, 4:34 am)

Re: Versioning file system, Chris Snook, (Tue Jun 19, 4:10 pm)

Re: Versioning file system, Jack Stone, (Tue Jun 19, 4:14 pm)

Re: Versioning file system, Chris Snook, (Tue Jun 19, 4:31 pm)

Re: Versioning file system, H. Peter Anvin, (Tue Jun 19, 3:15 pm)

Re: Versioning file system, Jack Stone, (Tue Jun 19, 3:22 pm)

Re: Versioning file system, Jack Stone, (Tue Jun 19, 3:06 pm)

Re: Versioning file system, Chris Snook, (Tue Jun 19, 4:03 pm)

Re: Versioning file system, Jack Stone, (Tue Jun 19, 4:08 pm)

Re: Versioning file system, John Stoffel, (Tue Jun 19, 4:34 pm)

Re: Versioning file system, Matthew Wilcox, (Tue Jun 19, 4:38 pm)

Re: Versioning file system, John Stoffel, (Tue Jun 19, 5:02 pm)

Re: Versioning file system, Jack Stone, (Tue Jun 19, 4:38 pm)

Re: Versioning file system, Chris Snook, (Tue Jun 19, 4:15 pm)

Re: Versioning file system, Jack Stone, (Tue Jun 19, 4:27 pm)

Re: Versioning file system, H. Peter Anvin, (Fri Jun 15, 6:38 pm)

Re: Versioning file system, alan, (Fri Jun 15, 6:51 pm)

Re: Versioning file system, Jörn, (Sat Jun 16, 10:53 am)

Re: Versioning file system, Andreas Dilger, (Mon Jun 18, 5:45 am)

Re: Versioning file system, Sorin Faibish, (Sat Sep 29, 1:44 pm)

Re: Versioning file system, Chris Mason, (Mon Jun 18, 11:32 am)

Re: Versioning file system, Bron Gondwana, (Mon Jun 18, 7:18 pm)

Re: Versioning file system, Theodore Tso, (Mon Jun 18, 10:01 am)

Re: Versioning file system, alan, (Mon Jun 18, 12:16 pm)

Re: Versioning file system, Theodore Tso, (Mon Jun 18, 1:29 pm)

Re: Versioning file system, Erik Mouw, (Wed Jul 4, 1:32 pm)

Re: Versioning file system, John Stoffel, (Thu Jul 5, 9:57 am)

Re: Versioning file system, Erik Mouw, (Thu Jul 5, 1:57 pm)

Re: Versioning file system, Chris Mason, (Thu Jul 5, 10:23 am)

Re: Versioning file system, Theodore Tso, (Wed Jul 4, 4:47 pm)

Re: Versioning file system, Erik Mouw, (Thu Jul 5, 1:55 pm)

Re: Versioning file system, Jeremy Allison, (Mon Jun 18, 1:33 pm)

Re: Versioning file system, Theodore Tso, (Mon Jun 18, 4:30 pm)

Re: Versioning file system, J. Bruce Fields, (Mon Jun 18, 4:50 pm)

Re: Versioning file system, H. Peter Anvin, (Mon Jun 18, 1:46 pm)

Re: Versioning file system, Jörn, (Mon Jun 18, 6:13 am)

Re: Versioning file system, Jack Stone, (Mon Jun 18, 5:54 am)

Re: Versioning file system, Jack Stone, (Sat Jun 16, 4:11 am)

Re: Versioning file system, Jeffrey V. Merkey, (Sat Jun 16, 5:46 am)

Re: Versioning file system, Graham Murray, (Sat Jun 16, 7:42 am)

Re: Versioning file system, Jeffrey V. Merkey, (Sat Jun 16, 6:12 am)

Re: Versioning file system, Jan Harkes, (Sat Jun 16, 12:49 pm)

Re: Versioning file system, Jeffrey V. Merkey, (Sat Jun 16, 4:03 pm)

Re: Versioning file system, Dale Amon, (Sat Jun 16, 5:06 pm)

Re: Versioning file system, Jan Harkes, (Sat Jun 16, 4:39 pm)

Re: Versioning file system, Alan Cox, (Sat Jun 16, 6:17 pm)

Re: Versioning file system, Dale Amon, (Sun Jun 17, 6:11 pm)

Re: Versioning file system, Jeffrey V. Merkey, (Sat Jun 16, 10:18 pm)

Re: Versioning file system, Jeffrey V. Merkey, (Sat Jun 16, 10:39 pm)

Re: Versioning file system, Jack Stone, (Sat Jun 16, 4:43 pm)

Re: Versioning file system, Alan Cox, (Sat Jun 16, 4:08 pm)

Re: Versioning file system, Jeffrey V. Merkey, (Sat Jun 16, 5:25 pm)

Re: Versioning file system, Jack Stone, (Sat Jun 16, 3:38 pm)

Re: Versioning file system, Mark Williamson, (Sat Jun 16, 9:15 am)

Re: Versioning file system, Jeffrey V. Merkey, (Sat Jun 16, 3:57 pm)

Re: Versioning file system, H. Peter Anvin, (Fri Jun 15, 6:59 pm)

Re: Versioning file system, alan, (Fri Jun 15, 7:06 pm)


linux-kernel:
Linus Torvalds	Linux 2.6.27-rc8
Greg KH	[patch 00/71] 2.6.26-stable review
Dmitry Torokhov	2.6.27-rc8+ - first impressions
Rafael J. Wysocki	[Bug #11215] INFO: possible recursive locking detected ps2 command
git:
Christian MICHON	Re: MinGW port - initial work uploaded
Luiz Fernando N. Capitulino	Libification project (SoC)
Linus Torvalds	People unaware of the importance of "git gc"?
Jakub Narebski	[RFC] Git User's Survey 2008
openbsd-misc:
Richard Stallman	Real men don't attack straw men
Tony Abernethy	Re: What is our ultimate goal??
GVG GVG	ssh_exchange_identification: Connection closed by remote host
James Hartley	scp batch mode?
linux-netdev:
Ingo Molnar	Re: [TCP]: TCP_DEFER_ACCEPT causes leak sockets
Timo Teräs	Re: xfrm_state locking regression...
Ingo Molnar	Re: [bug] stuck localhost TCP connections, v2.6.26-rc3+
Natalie Protasevich	[BUG] New Kernel Bugs


linux-2.6.10	19 minutes ago	Linux kernel
How to detect usb device insertioin and removal event ?	3 hours ago	Linux general
usb mic not detected	3 hours ago	Applications and Utilities
Extended configuration Read/Write	4 hours ago	Windows
Add ext2 inode field	14 hours ago	Linux kernel
the kernel how to power off the machine	1 day ago	Linux kernel
struct gendisk via request_queue	1 day ago	Linux kernel
page initialization during kernel initialization	2 days ago	Linux kernel
Read Transport Layer Data form network packets (tcp/ip)	2 days ago	Linux kernel
Getting blinking screen in Fedora 9	3 days ago	Linux general

Re: Versioning file system

Online users