Re: Debian Stable server hacked

To: debian-security@lists.debian.org
Subject: Re: Debian Stable server hacked
From: Colin Walters <walters@verbum.org>
Date: Wed, 13 Aug 2003 16:56:39 -0400
Message-id: <[🔎] 1060808199.10528.1.camel@columbia>
In-reply-to: <[🔎] 1060804961.28883.44.camel@columbia>
References: <[🔎] 3F310A43.9060101@balpol.tudelft.nl> <[🔎] 20030807155215.GD18220@alcor.net> <[🔎] 3F328651.8030009@balpol.tudelft.nl> <[🔎] 20030813042005.GA570@galacticasoftware.com> <[🔎] 1060804961.28883.44.camel@columbia>

On Wed, 2003-08-13 at 16:02, Colin Walters wrote:

> Let me give an example of how SELinux protects my machine (verbum.org). 
> My blog is a Python script (pyblosxom) which runs in a domain called
> httpd_user_script_t. 

Oh, and what I forgot to mention about this domain is that it doesn't
have write access to any files, for example.  Nor (obviously) can it use
the mount syscall. And those restrictions carry over to any other
program it executes, including /bin/sh, /bin/ls, /bin/mount, whatever.

Reply to:

References:
- Debian Stable server hacked
  - From: Thijs Welman <thijs@balpol.tudelft.nl>
- Re: Debian Stable server hacked
  - From: Matt Zimmerman <mdz@debian.org>
- Re: Debian Stable server hacked
  - From: Thijs Welman <thijs@balpol.tudelft.nl>
- Re: Debian Stable server hacked
  - From: "Adam Majer" <adamm@galacticasoftware.com>
- Re: Debian Stable server hacked
  - From: Colin Walters <walters@verbum.org>

Prev by Date: Re: Debian Stable server hacked
Next by Date: Re: Debian Stable server hacked
Previous by thread: Re: Debian Stable server hacked
Next by thread: Re: Debian Stable server hacked
Index(es):
- Date
- Thread