| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Sat, 26 Aug 2006 12:11:40 +0200 From: Pavel Machek <pavel@....cz> To: David Safford <safford@...son.ibm.com> Cc: Serge E Hallyn <sergeh@...ibm.com>, Mimi Zohar <zohar@...ibm.com>, David Safford <safford@...ibm.com>, kjhall@...ibm.com, linux-kernel <linux-kernel@...r.kernel.org>, LSM ML <linux-security-module@...r.kernel.org>, linux-security-module-owner@...r.kernel.org Subject: Re: [RFC][PATCH 8/8] SLIM: documentation Hi! > > Do you have examples where this security model stops an attack? > > The main goal of this model is to stop some of the most common real > attacks on client machines, in particular the downloading and execution > of malicious code, through a browser or email attachment. By making Well, I have seen those attacks on windows, but never on Linux. x bit seems to help here. > In one demo I like to run, I deliberately download a trojaned game, and > run it both as a user and even as root/system. Since the game is labeled > untrusted, it is invoked untrusted regardless of who runs it. That's okay, but that game can still get your browsing habits, steal your credit card numbers, and probably get your ssh passwords. ...so it may not be so good demo after all...? Pavel -- (english) http://www.livejournal.com/~pavelmachek (cesky, pictures) http://atrey.karlin.mff.cuni.cz/~pavel/picture/horses/blog.html - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists