Re: SELinux and the bash exploit.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On 09/26/2014 09:03 AM, James Hogarth wrote:


On 25 September 2014 22:40, Daniel J Walsh <dwalsh@xxxxxxxxxx> wrote:
https://danwalsh.livejournal.com/71122.html


Good article Dan ... it says clearly what I've been trying to drum into people's heads about the role it takes and how it confines the activity but an exploit that stays within the confines of that activity ... well it has to be allowed or else the standard activity would fail ;)
 


Yes. I also got a lot of questions how SELinux helps us with this exploit. I believe SELinux helps as much as possible here how Dan wrote in his blog.

Of course, there are also booleans to make a system with SELinux more restrictive. Also confined users. 
-- 
users mailing list
users@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Have a question? Ask away: http://ask.fedoraproject.org
[Index of Archives]     [Older Fedora Users]     [Fedora Announce]     [Fedora Package Announce]     [EPEL Announce]     [EPEL Devel]     [Fedora Magazine]     [Fedora Summer Coding]     [Fedora Laptop]     [Fedora Cloud]     [Fedora Advisory Board]     [Fedora Education]     [Fedora Security]     [Fedora Scitech]     [Fedora Robotics]     [Fedora Infrastructure]     [Fedora Websites]     [Anaconda Devel]     [Fedora Devel Java]     [Fedora Desktop]     [Fedora Fonts]     [Fedora Marketing]     [Fedora Management Tools]     [Fedora Mentors]     [Fedora Package Review]     [Fedora R Devel]     [Fedora PHP Devel]     [Kickstart]     [Fedora Music]     [Fedora Packaging]     [Fedora SELinux]     [Fedora Legal]     [Fedora Kernel]     [Fedora OCaml]     [Coolkey]     [Virtualization Tools]     [ET Management Tools]     [Yum Users]     [Yosemite News]     [Gnome Users]     [KDE Users]     [Fedora Art]     [Fedora Docs]     [Fedora Sparc]     [Libvirt Users]     [Fedora ARM]

  Powered by Linux