Re: SELinux and Reverse Shell.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Wed, Sep 30, 2020 at 03:57:56PM +0000, Jason Long wrote:
> Could SELinux protect a server from Reverse Shell attacks? When hackers
> access to the CMSes like WordPress then they do a Reverse Shell for access
> to the server. Could SELinux block it?

Yes, in a number of ways. First, it can constrain the WordPress process so
that whatever is needed to get the exploit into WordPress is blocked.
Second, even if that hole is wide open, it could prevent such a shell from
being launched. And third, it could constrain suspicious outgoing
connections, making a reverse shell attack impossible.

-- 
Matthew Miller
<mattdm@xxxxxxxxxxxxxxxxx>
Fedora Project Leader
_______________________________________________
selinux mailing list -- selinux@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to selinux-leave@xxxxxxxxxxxxxxxxxxxxxxx
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/selinux@xxxxxxxxxxxxxxxxxxxxxxx




[Index of Archives]     [Fedora Users]     [Fedora Desktop]     [Big List of Linux Books]     [Yosemite News]     [Yosemite Campsites]     [KDE Users]     [Gnome Users]

  Powered by Linux