Re: secure installation

To: debian-security@lists.debian.org
Subject: Re: secure installation
From: Russ Allbery <rra@debian.org>
Date: Fri, 17 Aug 2007 10:33:04 -0700
Message-id: <[🔎] 87bqd66p7z.fsf@windlord.stanford.edu>
In-reply-to: <[🔎] 20070817092912.99aa08ec.celejar@gmail.com> (celejar@gmail.com's message of "Fri, 17 Aug 2007 09:29:11 -0400")
References: <[🔎] CPEDKBGBJHLAJMBJNEACKEOAINAA.rvan@ncoastsoft.com> <[🔎] 200708161407.42380.jakykong@theanythingbox.com> <[🔎] 27507.75.11.237.22.1187299117.squirrel@admin.dailydata.net> <[🔎] 87eji3rvnv.fsf@windlord.stanford.edu> <[🔎] 27581.75.11.237.22.1187302167.squirrel@admin.dailydata.net> <[🔎] 87y7gbm79c.fsf@windlord.stanford.edu> <[🔎] 27697.75.11.237.22.1187306519.squirrel@admin.dailydata.net> <[🔎] 20070817092912.99aa08ec.celejar@gmail.com>

Celejar <celejar@gmail.com> writes:

> Just curious; anyone can forget a user account, but how did the
> attacker get root?

There are a *lot* more privilege escalation attacks than there are remote
exploits.  Just in the Linux kernel, a new one seems to show up every six
months or so.

-- 
Russ Allbery (rra@debian.org)               <http://www.eyrie.org/~eagle/>

Reply to:

Follow-Ups:
- Re: secure installation
  - From: Rick Moen <rick@linuxmafia.com>

References:
- RE: secure installation
  - From: "Robert Van Nostrand" <rvan@ncoastsoft.com>
- Re: secure installation
  - From: Jack T Mudge III <jakykong@theanythingbox.com>
- Re: secure installation
  - From: "R. W. Rodolico" <rod@dailydata.net>
- Re: secure installation
  - From: Russ Allbery <rra@debian.org>
- Re: secure installation
  - From: "R. W. Rodolico" <rod@dailydata.net>
- Re: secure installation
  - From: Russ Allbery <rra@debian.org>
- Re: secure installation
  - From: "R. W. Rodolico" <rod@dailydata.net>
- Re: secure installation
  - From: Celejar <celejar@gmail.com>

Prev by Date: Re: secure installation
Next by Date: Re: secure installation
Previous by thread: Re: secure installation
Next by thread: Re: secure installation
Index(es):
- Date
- Thread