I think it is really bizarre that e.g. making the interrupt table read only is considered a reasonable security move. Once someone is in the kernel able to modify kernel data structures of any kind, everything is lost. Actually, I wonder if security is the motivation here at all.
I think it is really bizarre that e.g. making the interrupt table read only is considered a reasonable security move. Once someone is in the kernel able to modify kernel data structures of any kind, everything is lost. Actually, I wonder if security is the motivation here at all.