Re: restricting access to /dev/mem
Posted Jul 25, 2005 6:38 UTC (Mon) by mingo
In reply to: Re: restricting access to /dev/mem
Parent article: Kernel Summit 2005: The ExecShield patches
You missed the following detail: we do not want to and cannot restrict access to /dev/mem in a total way, because X.org needs it to map the BIOS and/or the framebuffer. Hence the careful filtering of access, instead of blanket turning off. On those systems where X.org needs no access to /dev/mem at all (they are quite rare) we can turn it off permanently, but this does not solve the problem for all the other systems.
to post comments)