On Thu, Dec 03, 2009 at 00:06:29 +0000,
  Marko Vojinovic <vvma...@gmail.com> wrote:

> If /bin gets compromised, *everyone's* data gets compromised. /bin is better 
> protected from you than your home dir because you may not be the only user on 
> the machine. While it is impossible to protect your own data from you, it 
> *is* 
> possible to protect data of *other* users from you (in case you get 
> compromised). Linux is designed as a multiuser OS (unlike Windows), hence 
> better protection for system files.

SELinux allows for some protection of your data from you. For example you
can have policy keep web browsers, email readers or other dangerous (in that
they process externally provided data or are provided by corporations whose
marketting departments reign supreme) applications from reading parts of your
home directory.

-- 
fedora-list mailing list
fedora-list@redhat.com
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
Guidelines: http://fedoraproject.org/wiki/Communicate/MailingListGuidelines

Reply via email to