| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <alpine.DEB.1.10.0808081818430.4561@asgard.lang.hm> Date: Fri, 8 Aug 2008 18:21:54 -0700 (PDT) From: david@...g.hm To: Jörg Ostertag <Joerg.Ostertag@...ra.com> cc: Theodore Tso <tytso@....edu>, Rik van Riel <riel@...hat.com>, Eric Paris <eparis@...hat.com>, Greg KH <greg@...ah.com>, Al Viro <viro@...iv.linux.org.uk>, "Press, Jonathan" <Jonathan.Press@...com>, Arjan van de Ven <arjan@...radead.org>, linux-kernel@...r.kernel.org, malware-list@...ts.printk.net, linux-security-module@...r.kernel.org Subject: Re: [malware-list] Threat model for Unix Computers On Fri, 8 Aug 2008, J?rg Ostertag wrote: > Another threads would be: > - giving access to the Desktop-PC to guest-users for > "just let me look up something in the internet" > and the guest-user on the Desktop not informing about the (in his point of > view) urgent installation of there beloved > Browser-malware^H^H^H^H^H -adware ^H^H^H^H^H -extention if you give the guest user access to your account this is the same as the clueless desktop user. if you make a new account for that user the standard *nix permissions and user seperation come to your rescue, they may infect that temporary account, but that won't infect the normal user. David Lang -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists