On Thu, 24 May 2007 14:47:27 -0000, Pavel Machek said: > Yes, if there's significantly more remote bad guys than local bad > guys, and if remote bad guys can't just get some local user first, AA > still has some value. Experience over on the Windows side of the fence indicates that "remote bad guys get some local user first" is a *MAJOR* part of the current real-world threat model - the vast majority of successful attacks on end-user boxes these days start off with either "Get user to (click on link|open attachment)" or "Subvert the path to a website (either by hacking the real site or hijacking the DNS) and deliver a drive-by fruiting when the user visits the page".
Attachment:
pgplp7RuM7Jxw.pgp
Description: PGP signature
- Follow-Ups:
- References:
- Re: [AppArmor 01/41] Pass struct vfsmount to the inode_create LSM hook
- From: Casey Schaufler <[email protected]>
- Re: [AppArmor 01/41] Pass struct vfsmount to the inode_create LSM hook
- From: Pavel Machek <[email protected]>
- Re: [AppArmor 01/41] Pass struct vfsmount to the inode_create LSM hook
- From: [email protected]
- Re: [AppArmor 01/41] Pass struct vfsmount to the inode_create LSM hook
- From: Pavel Machek <[email protected]>
- Re: [AppArmor 01/41] Pass struct vfsmount to the inode_create LSM hook
- From: [email protected] (David Wagner)
- Re: [AppArmor 01/41] Pass struct vfsmount to the inode_create LSM hook
- From: Pavel Machek <[email protected]>
- Re: [AppArmor 01/41] Pass struct vfsmount to the inode_create LSM hook
- Prev by Date: Re: Linux v2.6.22-rc3
- Next by Date: Re: [patch 2/9] Conditional Calls - Hash Table
- Previous by thread: Re: [AppArmor 01/41] Pass struct vfsmount to the inode_create LSM hook
- Next by thread: Re: [AppArmor 01/41] Pass struct vfsmount to the inode_create LSM hook
- Index(es):
 |