On 9/21/07, Timothy Murphy <tim@xxxxxxxxxxxxxxxxxxxxxx> wrote: > William Hooper wrote: > > >> While I'm not hostile to SELinux, > >> I'm also not convinced it actually gives any protection in the real > >> world. > >> I've never seen anyone say, "Thank God I was running SELinux, > >> or I would have been in a mess". > > > > Mambo Exploit Blocked by SELinux > > http://interactive.linuxjournal.com/article/9176 > > > OK, that is getting nearer; > but as far as I can see, the guy in this case > was running some kind of web development server (Mambo) on his machine, > and a hacker had targeted this particular server. > > I wouldn't be doing anything so esoteric, > so still wouldn't feel in great danger. > Also, I was struck by the amount of trouble the man had to go to > to work out what had happened. > I wouldn't be up to that, so SELinux in this case > would be wasted on me. So because you do not deploy such apps, does it make it usless? Or are you not one of those who hold that SELinux is entirely a waste of time? -- Fedora 7 : sipping some of that moonshine ( www.pembo13.com )
