Enabling the kernel's DMESG_RESTRICT feature

Kees Cook kees at ubuntu.com
Thu Jun 2 17:24:48 UTC 2011


On Thu, Jun 02, 2011 at 06:20:28PM +0100, Matt Zimmerman wrote:
> On Thu, Jun 02, 2011 at 10:16:04AM -0700, Kees Cook wrote:
> > On Thu, Jun 02, 2011 at 09:11:51AM -0500, Serge Hallyn wrote:
> > > Quoting Matt Zimmerman (mdz at ubuntu.com):
> > > > Maybe I'm weird, but I use dmesg for a lot of "normal" tasks, not just
> > > > debugging problems which will require root to fix.  The most common is
> > > > probably the traditional "what device node was assigned to that device I
> > > 
> > > Nothing at all weird about that.
> > 
> > Aren't we all supposed to use "udisks --enumerate" now? :)
> 
> I hadn't used that before.  You got my hopes up, and I thought it might turn
> out to be a tool to map device nodes to meaningful descriptions of the
> physical devices.  Oh well. :-)

Yeah, that's kind of my point; the information is scattered all over the
place. "udisks --dump" has just about everything, but is a bit non-trivial
to quickly visually scan, IMO.

-- 
Kees Cook
Ubuntu Security Team



More information about the ubuntu-devel mailing list