Comments on: Theoretical Attack Vector?

By: mpdehaan

mpdehaan — Sat, 21 Nov 2009 14:32:25 +0000

Perhaps…. although that’s not as easy as saying “rollback to timestamp” as you’d still have to parse the log. That all being said, it shouldn’t be possible to begin with.

By: Leif

Leif — Sat, 21 Nov 2009 05:40:40 +0000

” and I wouldn’t know exactly what they installed so I could clean up after.”

/var/log/yum.log ?

By: mpdehaan

mpdehaan — Fri, 20 Nov 2009 14:34:58 +0000

I think SELinux is attempting to provide a language agnostic sandbox, the trick is to just make it automatic enough to run Pong in it automatically, and keep people from having to write policy … ever.

By: ddd

ddd — Fri, 20 Nov 2009 13:58:37 +0000

Of course requiring root to install software is a “arse covering” thing… A bit like “show the list of updates and decide whether to patch the machine” as if the user has a clue.

If software doesn’t have root components there shouldn’t be a problem (heck Fedora ships with user accessible gcc right?).

This is the new computing world. You don’t need permission from root to view http://www.filbert.com, why is this more or less safe than downloading and playing pong? Security of a user’s data is Selinux’s problem !not! an excuse for a “click ok to continue” dialog because we still haven’t got to where java was in netscape 2.0…

By: louparoublond

louparoublond — Fri, 20 Nov 2009 07:38:57 +0000

BSD ports suffer frpm the same problems. *BSD is secure bexause the devs have fine grained control of the stack.