Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id ; Thu, 26 Apr 2001 15:42:45 -0400 Received: (majordomo@vger.kernel.org) by vger.kernel.org id ; Thu, 26 Apr 2001 15:42:36 -0400 Received: from viper.haque.net ([66.88.179.82]:26506 "EHLO mail.haque.net") by vger.kernel.org with ESMTP id ; Thu, 26 Apr 2001 15:42:25 -0400 Date: Thu, 26 Apr 2001 15:40:44 -0400 (EDT) From: "Mohammad A. Haque" To: Ian Stirling cc: Subject: Re: [PATCH] Single user linux In-Reply-To: <200104261722.SAA16939@mauve.demon.co.uk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: linux-kernel-owner@vger.kernel.org X-Mailing-List: linux-kernel@vger.kernel.org On Thu, 26 Apr 2001, Ian Stirling wrote: > Also, there is another reason. > If you'r logged in as root, then any exploitable bug in large programs, > be it netscape, realplayer, wine, vmware, ... means that the > cracker owns your machine. > If they are not, then the cracker has to go through another significant > hoop, in order to get access to the machine. > For optimal security, you can do things like running netscape and other > apps under unpriveledged users, where they only have access to their own > files. > > (Note, netscape/.. are just used as examples, I'm not saying they are > more buggy than others, just large, and hard to get bug-free) > Heh. You receive all your email on your root account? -- ===================================================================== Mohammad A. Haque http://www.haque.net/ mhaque@haque.net "Alcohol and calculus don't mix. Project Lead Don't drink and derive." --Unknown http://wm.themes.org/ batmanppc@themes.org ===================================================================== - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/