On 4/20/05, Stewart Stremler <[EMAIL PROTECTED]> wrote:
begin quoting Tracy R Reed as of Wed, Apr 20, 2005 at 09:56:53AM +0700:
I think SE Linux does add more security. And so far with zero overhead as I have done all kinds of things to my laptop and never had to mess with it.
And how does it protect your data?
("By preventing a compromise of the OS." is not an acceptable answer.)
Why not? I have a hard time imagining a way for a system to protect data without protecting the OS. (In a sense, isn't it all just data?)
Because once the *single user's* data is compromised, neither the OS nor it's data is of any consequence anymore. At that point you may as well just format the whole file system and reinstall.
How is this different from the root account being compromised? Once the lone prisoner has escaped from the single-cell jail, of what further use is the jailer? Or the jail for that matter?
Even if you had a system that automatically encrypted data when you saved it, someone who had compromised your OS could conceivably replace that chunk of code with their own "encryption" scheme, couldn't they?
--Rachel
If you were the only user, and the attacker had full access to your account (and whether or not they had access to the root user), then the answer is "Probably".
--
Best Regards,
~DJA.-- [email protected] http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
