[maemo-developers] Maemo 6 Security questions

From: Kees Jongenburger kees.jongenburger at gmail.com
Date: Sat Feb 13 09:46:44 EET 2010
Hi

Yesterday we had a talk on irc about Maemo 6 security. Of course we
talked about DRM and such but think in the end most people understood
it can be useful to protect some userdata (passwords was a very clear
on) or functionality (I don't want my screen background to send sms
messages). One of the biggest converns I have is that in the end it
will be Nokia who decides what is allowed or not in this "normal"
more. I therefore would like to get an answer to the following
question so I can better determine the evilness level.


In normal more:
Will I be able to gain root access?
Will I be able to debug/strace programs on the device?
Will the end user be involved in the credentials a package gets  ?
(Can I accept lower security for my own programs or change the
policy?)
Will the contact data be protected by the security framework and will
I be able to export it?
Will I be able to probe kernel modules or use /dev/mem /dev/kmem?
what kind of protection are there against runtime attacks(buffer
overflows etc)?

In "no drm mode"
Will I be able to make phone calls?
Will I be able to access the phonebook etc?
Will binaries refuse to start because they get started in this mode or
crash because they don't get what they want?
Will all normal devices function (batter charging,wifi. phone functionality)?


Kind regards
More information about the maemo-developers mailing list