Dropping privs by PAM modules.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Hi,

I'm just wondering about dropping privilages by pam modules, does it make sense to you anyway? How to consider such behaviour, improved security or is it just security by obscurity? Anyway, imagine badly coded module, which can be circumvented by an attacker and used to launch his own code. Will dropping privs mitigate the possible loses coused by such malicious code? What are you thinking about it?

Sincerly,
Filip (s_n) Palian.


:wq!

_______________________________________________
Pam-list mailing list
Pam-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/pam-list

[Index of Archives]     [Fedora Users]     [Kernel]     [Red Hat Install]     [Linux for the blind]     [Gimp]

  Powered by Linux