Re: exporting hardware "system ID" by sysctl

Score:

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

[view in full thread]

From: Steven M. Bellovin <smb@...>

To: Joerg Sonnenberger <joerg@...>

Cc: <tech-kern@...>

Subject: Re: exporting hardware "system ID" by sysctl

Date: Wednesday, October 17, 2007 - 4:58 pm

On Wed, 17 Oct 2007 22:07:26 +0200
Joerg Sonnenberger <joerg@britannica.bec.de> wrote:

quoted text> On Wed, Oct 17, 2007 at 03:54:50PM -0400, Thor Lancelot Simon wrote:
> > I'd like to export a hardware "system ID" by sysctl (this would also
> > export system type information where available).  Actually, though,
> > I'd like to export several, since many current systems have a
> > number of such IDs.
> 
> If you really want to do this, I think a separate sysctl should exist
> to restrict it to privileged processes. See the long discussions
> about the P3 serial number.
> 
Hmm, I'm not convinced about this one.  There tend to be other
effectively-unique IDs, such as MAC addresses; I'm not sure that
locking down just this set helps much.  (Aside: the P3 issue wasn't
real.  Anyone who had enough access to query the CPU serial number
had enough access to find lots of other serial numbers, including the
set that Thor would like.)

It would help this part of the discussion, I think, if I understood
better how the information would be used.  What programs or daemons
would query it?  Would they run as root?  


		--Steve Bellovin, http://www.cs.columbia.edu/~smb

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

exporting hardware "system ID" by sysctl, Thor Lancelot Simon, (Wed Oct 17, 3:54 pm)

Re: exporting hardware "system ID" by sysctl, Jared D. McNeill, (Wed Oct 17, 4:41 pm)

Re: exporting hardware "system ID" by sysctl, Martin Husemann, (Wed Oct 17, 6:00 pm)

RE: exporting hardware "system ID" by sysctl, Tim Rightnour, (Wed Oct 17, 4:28 pm)

Re: exporting hardware "system ID" by sysctl, Thor Lancelot Simon, (Wed Oct 17, 4:32 pm)

Re: exporting hardware "system ID" by sysctl, Tim Rightnour, (Wed Oct 17, 5:01 pm)

RE: exporting hardware "system ID" by sysctl, Boyer, Jason, (Wed Oct 17, 5:15 pm)

Re: exporting hardware "system ID" by sysctl, Steven M. Bellovin, (Wed Oct 17, 6:22 pm)

Re: exporting hardware "system ID" by sysctl, Brett Lymn, (Wed Oct 17, 9:50 pm)

Re: exporting hardware "system ID" by sysctl, Jarle Greipsland, (Thu Oct 18, 3:17 am)

Re: exporting hardware "system ID" by sysctl, Thor Lancelot Simon, (Wed Oct 17, 5:04 pm)

Re: exporting hardware "system ID" by sysctl, Tim Rightnour, (Wed Oct 17, 5:08 pm)

Re: exporting hardware "system ID" by sysctl, Bernd Ernesti, (Wed Oct 17, 4:14 pm)

Re: exporting hardware "system ID" by sysctl, Joerg Sonnenberger, (Wed Oct 17, 4:07 pm)

Re: exporting hardware "system ID" by sysctl, Steven M. Bellovin, (Wed Oct 17, 4:58 pm)

Re: exporting hardware "system ID" by sysctl, Thor Lancelot Simon, (Thu Oct 18, 2:12 pm)

Re: exporting hardware "system ID" by sysctl, Hubert Feyrer, (Thu Oct 18, 2:20 pm)

Re: exporting hardware "system ID" by sysctl, Andrew Doran, (Thu Oct 18, 2:16 pm)

Re: exporting hardware "system ID" by sysctl, Jason Thorpe, (Thu Oct 18, 4:53 pm)


linux-kernel:
Martin Bligh	Re: Unified tracing buffer
Ingo Molnar	[announce] "kill the Big Kernel Lock (BKL)" tree
Con Kolivas	[PATCH] [RFC] sched: accurate user accounting
Bart Van Assche	Integration of SCST in the mainstream Linux kernel
linux-netdev:
Krzysztof Oledzki	Error: an inet prefix is expected rather than "0/0".
Wenji Wu	A Linux TCP SACK Question
Ramachandra K	[PATCH 11/13] QLogic VNIC: Driver utility file - implements various utility macros
Jay Cliburn	Re: atl1 64-bit => 32-bit DMA borkage (reproducible, bisected)
git:
Andrew Morton	Untracked working tree files
Pierre Habouzit	Re: libgit2 - a true git library
Nicolas Vilz 'niv'	git + ssh + key authentication feature-request
Martin Langhoff	Re: pack operation is thrashing my server
openbsd-misc:
Steve B	SSH brute force attacks no longer being caught by PF rule
GVG GVG	ssh_exchange_identification: Connection closed by remote host
rancor	How to copy/pipe console buffert to file?
Richard Stallman	Real men don't attack straw men


Question on swap as ramdisk partition	45 minutes ago	Linux kernel
Netfilter kernel module	11 hours ago	Linux kernel
serial driver xmit problem	14 hours ago	Linux kernel
Why Windows is better than Linux	14 hours ago	Linux general
How can I see my kernel messages in vt12?	20 hours ago	Linux kernel
Grub	1 day ago	Linux general
vmalloc_fault handling in x86_64	1 day ago	Linux kernel
epoll_wait()ing on epoll FD	1 day ago	Linux kernel
Framebuffer in x86_64 causes problems to multiseat	1 day ago	Linux kernel
Difference between 2.4 and 2.6 regarding thread creation	2 days ago	Linux general

Re: exporting hardware "system ID" by sysctl

Online users