Re: SELinux

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: Takehiko Abe <keke@xxxxxxx>
Subject: Re: SELinux
From: Bruno Wolff III <bruno@xxxxxxxx>
Date: Tue, 31 Aug 2010 10:32:22 -0500
Cc: Community support for Fedora users <users@xxxxxxxxxxxxxxxxxxxxxxx>
Delivered-to: users@xxxxxxxxxxxxxxxxxxxxxxx
In-reply-to: <4C7D1C41.4090508@xxxxxxx>
List-archive: <http://lists.fedoraproject.org/pipermail/users>
List-help: <mailto:[email protected]?subject=help>
List-id: Community support for Fedora users <users.lists.fedoraproject.org>
List-post: <mailto:[email protected]>
List-subscribe: <https://admin.fedoraproject.org/mailman/listinfo/users>, <mailto:[email protected]?subject=subscribe>
List-unsubscribe: <https://admin.fedoraproject.org/mailman/listinfo/users>, <mailto:[email protected]?subject=unsubscribe>
Mail-followup-to: Takehiko Abe <keke@xxxxxxx>, Community support for Fedora users <users@xxxxxxxxxxxxxxxxxxxxxxx>
References: <i5e2c6$lh4$1@xxxxxxxxxxxxxxx> <4C7A9583.5010401@xxxxxxxxx> <Pine.SOC.4.63.1008292221180.676@xxxxxxxxxxxxxxxx> <4C7B33BF.3050501@xxxxxxx> <20100830220652.66f1ef6d@xxxxxxxxxxxxxxxxxxx> <1283257602.12881.12.camel@xxxxxxxxxxxxxxxxxxxxxxxxxxx> <4C7D04E5.9020501@xxxxxxxxxx> <4C7D161F.8070907@xxxxxxx> <20100831161333.36414962@xxxxxxxxxxxxxxxxxxx> <4C7D1C41.4090508@xxxxxxx>
Reply-to: Community support for Fedora users <users@xxxxxxxxxxxxxxxxxxxxxxx>
Sender: users-bounces@xxxxxxxxxxxxxxxxxxxxxxx
User-agent: Mutt/1.5.20 (2009-12-10)

On Wed, Sep 01, 2010 at 00:14:09 +0900,
  Takehiko Abe <keke@xxxxxxx> wrote:
> ;;; sorry other one goes straight to you
> 
>  > Linus is not exactly famous for his ability to understand security
>  > concepts. I find the fact your argument is produced by google and
>  > cut/paste rather than technical material ... enlightening
> 
> Well, please educate me. All I hear from advocates is "more security"
> without a concrete example. You mentioned the danger of emails get
> stolen without SELinux. Please give me the scenario. So we can gauge
> the risk.

If you read email you need selinux. If you read email with a client that
fires up plugins to read special content (e.g. html, pdfs, flash) then you
really need selinux.

If you use a web browser to view more than a short list of trusted sites,
you need selinux.

If you run network services accessible from outside the machine then you
need selinux.

If you run binaries from semitrusted groups (this includes most commercial
software) then you need selinux.
-- 
users mailing list
users@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines

Follow-Ups:
- Re: SELinux
  - From: Ralf Corsepius

References:
- Re: SELinux
  - From: Rex Dieter
- Re: SELinux
  - From: Erik P. Olsen
- Re: SELinux
  - From: Patrick Dupre
- Re: SELinux
  - From: Takehiko Abe
- Re: SELinux
  - From: Alan Cox
- Re: SELinux
  - From: Tim
- Re: SELinux
  - From: Ralf Corsepius
- Re: SELinux
  - From: Takehiko Abe
- Re: SELinux
  - From: Alan Cox
- Re: SELinux
  - From: Takehiko Abe

Prev by Date: Re: SELinux
Next by Date: Re: Thunderbird attach files (was Re: General desktop questions)
Previous by thread: Re: SELinux
Next by thread: Re: SELinux
Index(es):
- Date
- Thread

[Index of Archives] [Current Fedora Users] [Fedora Desktop] [Fedora SELinux] [Yosemite News] [Yosemite Photos] [KDE Users] [Fedora Tools] [Fedora Docs]

Powered by Linux