The threat model [1] page describes more details about what it's intended to do. I think if there's no false positives for the checks (or false positives are limited to other kernel features which can be disabled), it would be great if LKRG just generated an NMI.
I'm curious about how this is received, though. Has it been discussed on LKML? Are there any distros interested?
I'm curious about how this is received, though. Has it been discussed on LKML? Are there any distros interested?
[1] https://openwall.info/wiki/p_lkrg/Threat_model