Re: [OT] Re: please kindly get back to me

Alan Cox (alan@lxorguk.ukuu.org.uk)
04 Jun 2002 21:24:35 +0100

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Robert Cardell: "Re: [PATCH] Trivial, IDE geometry fix / defconfig changes"
Previous message: Adam Kropelin: "Re: 2.4.18 assertion failure in journal_commit_transaction"

On Tue, 2002-06-04 at 19:36, J Sloan wrote:
> Complacency is never a good idea - however,
> let's give credit where credit is due - it's orders
> of magnitude more difficult to do something like
> this against a unix system - most script kiddies
> will go for the easy targets (microsoft) instead

Each of the major viruses has probably got one author singular.

There are ways of making systems much more resistant to attack including
viruses. Things like RSBAC and the NSA security modules help you get
into a situation where this kind of stuff doesn't occur

User1 gets a virus
User1 owns a binary root users
Root gets the virus
Splat

Because with a trust model it goes instead

User1 geta a virus
User1 owns a binary root users
User1 virus patches the binary

Root is refused permission to run the binary because it no longer has
a high enough integrity

Even before that the lack of people checking GPG keys on RPM and other
packages is disturbing.

Alan

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Robert Cardell: "Re: [PATCH] Trivial, IDE geometry fix / defconfig changes"
Previous message: Adam Kropelin: "Re: 2.4.18 assertion failure in journal_commit_transaction"