Tales from the Kernel Parameter Side

Some of the descriptions of sysctl parameters are mixed up and wrong:<p><pre><code> kernel.core_uses_pid Block USB devices kernel.ctrl-alt-del Disable access to dmesg for unprivileged users kernel.dmesg_restrict Disable kexec to prevent kernel livepatching kernel.kptr_restrict Restrict access to kernel logs </code></pre> The <i>official</i> documentation for &#x2F;proc&#x2F;sys and sysctl settings is here: <a href="https:&#x2F;&#x2F;www.kernel.org&#x2F;doc&#x2F;html&#x2F;latest&#x2F;admin-guide&#x2F;sysctl&#x2F;index.html" rel="nofollow">https:&#x2F;&#x2F;www.kernel.org&#x2F;doc&#x2F;html&#x2F;latest&#x2F;admin-guide&#x2F;sysctl&#x2F;in...</a><p>The article seems to mostly exist to be a showcase for Falco, which apparently is some sort of file change security monitor.

I&#x27;ve been playing with QEMU a lot lately. Early on I encountered a fairly fundamental problem: how do you pass arbitrary data to a booting Linux system? I ended up discovering fw_cfg[0], but it feels pretty janky for this purpose and didn&#x27;t seem to work for larger files like executables. Anyone aware of a better way?<p>[0]: <a href="https:&#x2F;&#x2F;www.kernel.org&#x2F;doc&#x2F;Documentation&#x2F;ABI&#x2F;testing&#x2F;sysfs-firmware-qemu_fw_cfg" rel="nofollow">https:&#x2F;&#x2F;www.kernel.org&#x2F;doc&#x2F;Documentation&#x2F;ABI&#x2F;testing&#x2F;sysfs-f...</a>