Component Type: kbuild config

Description: Appraise kernel modules signatures

More info: Enabling this rule will require all kernel modules to be signed and verified by a public key on the trusted IMA keyring. Kernel module signatures can only be verified by IMA-appraisal, via the finit_module syscall. Enabling this rule will prevent the usage of the init_module syscall.

Build project: Kconfig (Linux kconfig) (Path: security\integrity\ima\Kconfig )

Other views: file explorer