who provides /etc/sysconfig/selinux?
Richard Hally
rhally at mindspring.com
Wed Apr 7 22:27:28 UTC 2004
Jesse Keating wrote:
>On Wednesday 07 April 2004 14:25, Richard Hally wrote:
>
>
>>Rpm can put files just about anywhere. The installer (anaconda) is a
>>corner case but rpm certainly could be a method of attack and as you
>>say rpm doesn't always account for a packages files. Looks like a
>>trojaned rpm would work and be difficult to spot.
>>
>>
>
>Which is why you shouldn't be installing rouge rpms that are unsigned by
>a trusted source (like Red Hat). And really, there are more direct and
>equally untrackable ways to own a box w/ a trojan rpm than disabling
>your SELinux.
>
>
>
So you are saying that some one can "own a box" (whatever that means)
while SELinux is in enforcing mode?
And do what? :)
More information about the fedora-test-list
mailing list