Re: Security Breach ?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>
Subject: Re: Security Breach ?
From: Paul Howarth <paul@xxxxxxxxxxxx>
Date: Thu, 03 Mar 2005 12:26:28 +0000
In-reply-to: <[email protected]>
List-archive: <https://www.redhat.com/archives/fedora-list>
List-help: <mailto:[email protected]?subject=help>
List-id: For users of Fedora Core releases <fedora-list.redhat.com>
List-post: <mailto:[email protected]>
List-subscribe: <http://www.redhat.com/mailman/listinfo/fedora-list>, <mailto:[email protected]?subject=subscribe>
List-unsubscribe: <http://www.redhat.com/mailman/listinfo/fedora-list>, <mailto:[email protected]?subject=unsubscribe>
References: <[email protected]> <[email protected]> <[email protected]> <[email protected]> <[email protected]> <[email protected]> <[email protected]>
Reply-to: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>
User-agent: Mozilla Thunderbird 0.9 (X11/20041127)

Thomas Zehetbauer wrote:

On Thu, 2005-03-03 at 08:18 +0000, Paul Howarth wrote:

You don't say which distribution this web server was running, but I
suspect that if your Apache had been running under SELinux then the
attacker would not have been able to run any scripts from /tmp
or /var/tmp. So, when you rebuild the server, it would be well worth
considering using SELinux.

You don't need SELinux for this, you could always mount /tmp with noexec
flag.

And /var too, provided they're separate partitions. Another good reason not to install into just one big / partition.

Paul.

Follow-Ups:
- Re: Security Breach ?
  - From: Guy Fraser
- Re: Security Breach ?
  - From: Chris Strzelczyk

References:
- Security Breach ?
  - From: Chris Strzelczyk
- Re: Security Breach ?
  - From: Alexander Dalloz
- Re: Security Breach ?
  - From: Chris Strzelczyk
- Re: Security Breach ?
  - From: Thomas Cameron
- Re: Security Breach ?
  - From: Chris Strzelczyk
- Re: Security Breach ?
  - From: Paul Howarth
- Re: Security Breach ?
  - From: Thomas Zehetbauer

Prev by Date: Re: got the isos...........
Next by Date: nc
Previous by thread: Re: Security Breach ?
Next by thread: Re: Security Breach ?
Index(es):
- Date
- Thread

[Index of Archives] [Current Fedora Users] [Fedora Desktop] [Fedora SELinux] [Yosemite News] [Yosemite Photos] [KDE Users] [Fedora Tools] [Fedora Docs]