Never IRC as RootNever IRC as Root
Ben Fowler blogs about the issues related to running IRC as root. Google searches for (irc client exploit) and (irc client “buffer overflow”) give a number of interesting web pages.[...]
Category: Security
SE Linux vs chrootSE Linux vs chroot
A question that is often asked is whether to use SE Linux or a chroot to restrict a program. In Unix chroot is a way of running a program with[...]
When to Use SE LinuxWhen to Use SE Linux
Recently someone asked on IRC whether they should use SE Linux on a web server machine (that is being used for no other purpose) and then went on to add[...]
SE Linux shirts for sale!SE Linux shirts for sale!
Faye and I have created Cafepress stores selling shirts and other things with SE Linux logos, here are the two designs: Play Machine SE Linux MLS There are shirts, coffee[...]
SE Linux in DebianSE Linux in Debian
I have now got a Debian Xen domU running the strict SE Linux policy that can boot in enforcing mode. I expect that tomorrow I will have it working with[...]
Tom’s Hardware falls victim to a trojanTom’s Hardware falls victim to a trojan
E-Week has an article about the popular computer hardware review site Tom’s Hardware (tomshardware.com) being hit by a trojan in a banner advert. From the article it’s not clear whether[...]
Five ways SE Linux may surprise youFive ways SE Linux may surprise you
Frank Mayer of Tresys has written a great article on the techtarget.com site about SE Linux. It seems mostly aimed at managers and novice users and explains how SE Linux[...]
LUG talks todayLUG talks today
Today I gave three talks at my local LUG. The first was my latest SE Linux talk (I’ll put the notes online soon). The second was a talk about voting.[...]
booting from USB for securitybooting from USB for security
Sune Vuorela asks about how to secure important data such as GPG keys on laptops. I believe that the ideal solution involves booting from a USB device with an encrypted[...]
Spooks and GConfSpooks and GConf
Jeff Waugh wrote an amusing post about SE Linux and GConf support. It’s good to see SE Linux being promoted to the GNOME community. Related posts: music for children Adam[...]