Xen and SecurityXen and Security
I have previously posted about the difference between using a chroot and using SE Linux [1]. Theo de Raadt claims that virtualisation does not provide security benefits [2] based on[...]
Category: Security
0wned a DVD Player0wned a DVD Player
Above is a picture of a DVD player I saw on sale in Dick Smith Electronics [1] (a chain store that used to sell mostly electronics hobbyist gear but now[...]
Banking with an Infected ComputerBanking with an Infected Computer
Bruce Schneier summarised a series of articles about banking security [1]. He mentioned the fact that banks don’t seem to care about small losses and would rather just deal with[...]
My SE Linux Etch RepositoryMy SE Linux Etch Repository
deb http://www.coker.com.au etch selinux The above sources.list line has all the i386 packages needed for running SE Linux with strict policy on Etch as well as a couple of packages[...]
Insider Threats and Small Storage DevicesInsider Threats and Small Storage Devices
Danny Angus writes about the potential threat posed by small storage devices with large capacity [1]. His post was prompted by a BBC article about Hitachi’s plans for new hard[...]
AUUG 2007AUUG 2007
Today was the final day of the AUUG 2007 conference [1]. Yesterday I gave a talk about SE Linux for about an hour (not sure exactly as I forgot to[...]
Execmem and SE LinuxExecmem and SE Linux
Eddy writes about problems getting the game oolite to run under SE Linux [1]. Strangely after I fixed the shared object issue with libffcall1 (as described in my previous post[...]
Lintian and Executable StacksLintian and Executable Stacks
Debian has a program called Lintian that is used to search for common bugs in Debian packages. When it encounters a package with a shared object that requests an executable[...]
How SE Linux Prevents Local Root ExploitsHow SE Linux Prevents Local Root Exploits
In a comment on my previous post about SE Linux and worms/trojans [1] a user enquired about which methods of gaining local root are prevented by SE Linux. A local[...]
Can SE Linux Stop a Linux StormCan SE Linux Stop a Linux Storm
Bruce Schneier has just written about the Storm Worm [1] which has apparently been quietly 0wning some Windows machines for most of this year (see the Wikipedia page for more[...]