![\"\"](\"http:\/\/malwrforensics.com\/en\/wp-content\/uploads\/2020\/04\/kconfig_strict_kernel_rwx.png\")
<\/figure>\n\n\n\n![\"\"](\"http:\/\/malwrforensics.com\/en\/wp-content\/uploads\/2020\/04\/kconfig_strict_module_rwx.png\")
<\/figure>\n\n\n\nIn the init<\/em> folder, edit the main.c<\/em> file and search for the line containing <\/p>\n\n\n\n #if defined(CONFIG_STRICT_KERNEL_RWX) || defined(CONFIG_STRICT_MODULE_RWX)<\/strong><\/p>\n\n\n\n One option would be to undefine both of them:<\/p>\n\n\n\n Another option is to search for the mark_readonly(void)<\/strong> function, and remove most of its contents:<\/p>\n\n\n\n Afterwards, you can compile<\/a> the kernel and enjoy modifying structures that were once read-only.<\/p>\n","protected":false},"excerpt":{"rendered":" If you’re interested in removing some of the memory protections (especially around RWX) in the Linux kernel version 5+, here are some pointers: In the arch folder, edit the Kconfig file, and look for config STRICT_KERNEL_RWX and config STRICT_MODULE_RWX. You can change their default value to the values below. In the init folder, edit the […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[53,1],"tags":[34,11,117,124,126],"class_list":["post-341","post","type-post","status-publish","format-standard","hentry","category-linux","category-security","tag-kernel","tag-linux","tag-linux-kernel","tag-memory-protection","tag-rwx"],"blocksy_meta":{"styles_descriptor":{"styles":{"desktop":"","tablet":"","mobile":""},"google_fonts":[]}},"featured_image_urls_v2":{"full":"","thumbnail":"","medium":"","medium_large":"","large":"","1536x1536":"","2048x2048":""},"post_excerpt_stackable_v2":" If you’re interested in removing some of the memory protections (especially around RWX) in the Linux kernel version 5+, here are some pointers: In the arch folder, edit the Kconfig file, and look for config STRICT_KERNEL_RWX and config STRICT_MODULE_RWX. You can change their default value to the values below. In the init folder, edit the main.c file and search for the line containing #if defined(CONFIG_STRICT_KERNEL_RWX) || defined(CONFIG_STRICT_MODULE_RWX) One option would be to undefine both of them: Another option is to search for the mark_readonly(void) function, and remove most of its contents: Afterwards, you can compile the kernel and enjoy modifying…<\/p>\n","category_list_v2":"Linux+<\/a>, Security<\/a>","author_info_v2":{"name":"malwrforensics","url":"https:\/\/malwrforensics.com\/en\/author\/u_malwrforensics\/"},"comments_num_v2":"0 comments","_links":{"self":[{"href":"https:\/\/malwrforensics.com\/en\/wp-json\/wp\/v2\/posts\/341","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/malwrforensics.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/malwrforensics.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/malwrforensics.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/malwrforensics.com\/en\/wp-json\/wp\/v2\/comments?post=341"}],"version-history":[{"count":2,"href":"https:\/\/malwrforensics.com\/en\/wp-json\/wp\/v2\/posts\/341\/revisions"}],"predecessor-version":[{"id":347,"href":"https:\/\/malwrforensics.com\/en\/wp-json\/wp\/v2\/posts\/341\/revisions\/347"}],"wp:attachment":[{"href":"https:\/\/malwrforensics.com\/en\/wp-json\/wp\/v2\/media?parent=341"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/malwrforensics.com\/en\/wp-json\/wp\/v2\/categories?post=341"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/malwrforensics.com\/en\/wp-json\/wp\/v2\/tags?post=341"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}![\"\"](\"http:\/\/malwrforensics.com\/en\/wp-content\/uploads\/2020\/04\/undefine_strict_kernel_module_rwx.png\")
<\/figure>\n\n\n\n![\"\"](\"http:\/\/malwrforensics.com\/en\/wp-content\/uploads\/2020\/04\/mark_readonly_fn.png\")
<\/figure>\n\n\n\n