On Thu, 26 Apr 2001, Ian Stirling wrote:
> Also, there is another reason.
> If you'r logged in as root, then any exploitable bug in large programs,
> be it netscape, realplayer, wine, vmware, ... means that the
> cracker owns your machine.
> If they are not, then the cracker has to go through another significant
> hoop, in order to get access to the machine.
> For optimal security, you can do things like running netscape and other
> apps under unpriveledged users, where they only have access to their own
> (Note, netscape/.. are just used as examples, I'm not saying they are
> more buggy than others, just large, and hard to get bug-free)
Heh. You receive all your email on your root account?
===================================================================== Mohammad A. Haque http://www.haque.net/ email@example.com
"Alcohol and calculus don't mix. Project Lead Don't drink and derive." --Unknown http://wm.themes.org/ firstname.lastname@example.org =====================================================================
- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to email@example.com More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
This archive was generated by hypermail 2b29 : Mon Apr 30 2001 - 21:00:16 EST