Jeremy Grosser :: An Engineer’s take on Chrome OS

Just how much can be done or not done on a Chromebook Pixel? A systems engineer jumps in with both feet.

“Basically, only the rootfs “/” mountpoint is mounted without the “noexec” option, meaning that files under any other mountpoint are restricted to reading and writing data only, and files stored there cannot be executed as programs. Only the root user can edit files in the rootfs, so this means no executables can be changed without root privileges. Developer mode is a chink in this armor, as it allows the chronos user to use sudo to escalate to root and run any command.”

Jeremy Grosser :: An Engineer’s take on Chrome OS

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s