On Wed, 2011-01-05 at 16:13 -0500, Adam Jackson wrote: > On Wed, 2011-01-05 at 14:10 -0500, Matt McCutchen wrote: > > On Wed, 2011-01-05 at 11:12 -0500, Adam Jackson wrote: > > > (And of course what we're doing here is protecting against a malicious > > > attacker who already has enough privileges to run code on your system, > > > which means you're pretty far into having already lost. Meh.) > > > > I've seen this viewpoint a number of places. IMO, it's a shame that the > > community seems to be giving up on local system security. In various > > situations, it would be quite convenient if I could give other people > > shell accounts on my machine without risking compromise of all of my > > data. The virtualization solutions are more work to set up. > > You're putting words in my mouth just a little. > > The existing discussion was about denial of service attacks. OK, I misunderstood. Reading your remark by itself, I thought it referred to confidentiality and integrity too. -- Matt -- devel mailing list devel@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/devel
