Executable Stack and Shared ObjectsExecutable Stack and Shared Objects
When running SE Linux you will notice that most applications are not permitted to run with an executable stack. One example of this is libsmpeg0 which is used by the[...]
Category: Security
Reducing Automated AttacksReducing Automated Attacks
I read the logs from my servers. The amount of time I spend reading log summaries is determined by how important the server is. On the machines that are most[...]
Context of /dev/xvc0Context of /dev/xvc0
I have just converted a Fedora Core 5 server to a CentOS 5 Xen Dom0 with Fedora Core 5 as a DomU. The process took a little longer than expected[...]
Multiple Pointers in XMultiple Pointers in X
After having read Brice Goglin’s post about what to expect in X for Lenny [1] the thing that seemed most exciting is the support for Multi-Pointer X [2]. This allows[...]
ISP Password Change by Untrusted PeopleISP Password Change by Untrusted People
After dealing with Optus phone support [1] in regard to a routine request for a password change I have been thinking about better ways of managing password changes for a[...]
Is SE Linux only for Linux?Is SE Linux only for Linux?
I have just been asked for advice on whether SE Linux is Linux specific, and therefore whether code related to SE Linux should always be stored with other Linux specific[...]
Never IRC as RootNever IRC as Root
Ben Fowler blogs about the issues related to running IRC as root. Google searches for (irc client exploit) and (irc client “buffer overflow”) give a number of interesting web pages.[...]
SE Linux vs chrootSE Linux vs chroot
A question that is often asked is whether to use SE Linux or a chroot to restrict a program. In Unix chroot is a way of running a program with[...]
When to Use SE LinuxWhen to Use SE Linux
Recently someone asked on IRC whether they should use SE Linux on a web server machine (that is being used for no other purpose) and then went on to add[...]
SE Linux shirts for sale!SE Linux shirts for sale!
Faye and I have created Cafepress stores selling shirts and other things with SE Linux logos, here are the two designs: Play Machine SE Linux MLS There are shirts, coffee[...]