Re: [PATCH] Single user linux

From: Mohammad A. Haque (mhaque@haque.net)
Date: Thu Apr 26 2001 - 14:40:44 EST


On Thu, 26 Apr 2001, Ian Stirling wrote:

> Also, there is another reason.
> If you'r logged in as root, then any exploitable bug in large programs,
> be it netscape, realplayer, wine, vmware, ... means that the
> cracker owns your machine.
> If they are not, then the cracker has to go through another significant
> hoop, in order to get access to the machine.
> For optimal security, you can do things like running netscape and other
> apps under unpriveledged users, where they only have access to their own
> files.
>
> (Note, netscape/.. are just used as examples, I'm not saying they are
> more buggy than others, just large, and hard to get bug-free)
>

Heh. You receive all your email on your root account?

-- 

===================================================================== Mohammad A. Haque http://www.haque.net/ mhaque@haque.net

"Alcohol and calculus don't mix. Project Lead Don't drink and derive." --Unknown http://wm.themes.org/ batmanppc@themes.org =====================================================================

- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/



This archive was generated by hypermail 2b29 : Mon Apr 30 2001 - 21:00:16 EST