BKA Kernel Armor
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 
anna 992339b867
add readme
1 month ago
include intial commit uwu 1 month ago
.gitignore intial commit uwu 1 month ago
Makefile intial commit uwu 1 month ago
README.md add readme 1 month ago
bka.c intial commit uwu 1 month ago

README.md

BKA Kernel Armor

BKA Kernel Armor (or bka for short) is a kernel module aimed to minimize the risk of law enforcement or other bad actors compromising you computer. It detects newly attached USB devices and, if enabled, shuts down the machine.

Configuration

Configuration is done through module parameters. The following parameters currently exist:

  • protection
    • 0: protection is disabled, meaning it is possible to attach new USB devices. These devices are then added to the global allowlist.
    • 1: protection is enabled, meaning it is not possible to attach new USB devices.
  • shutdown
    • 0: don't shutdown when encountering new USB devices, only disable the device
    • 1: do a regular poweroff when encountering a new USB device
    • 2: do an emergency poweroff when encountering a new USB device (may lead to data loss)

These values may be specified either through the command line when loading them:

insmod bka.ko protection=1 shutdown=1

or after loading them, through the sysfs interface:

echo 1 > /sys/module/bka/parameters/protection
echo 1 > /sys/module/bka/parameters/shutdown

Compiling

The basic procedure: just type make. You need your kernel headers installed, though.

Name Origin

BKA is also shorthand for Bundeskriminalamt, the German pendant to the FBI.