26May2011 (UTC +8) On Thu, May 26, 2011 at 11:13, Danny Ching wrote: > Perhaps then you can run those in a virtual environment (vbox) and chroot it.
This solution is a +1 if the admin is trying to protect the local O/S from attacks. Additionally, if the admin wants to secure the web application from data-driven attacks, check this product out. It's been around a while now, but I don't know if it'll run on WINE. https://www.Quaresso.com/products/protect_on_q/specifications > On May 26, 2011, at 10:48 AM, Rogelio Serrano wrote: > >> On Thu, May 26, 2011 at 10:40 AM, Danny Ching wrote: >>> If i were to make a hardened environment i'd do away with the browser >>> altogether. But if i were to choose, i'd go with chromium (not google >>> chrome) because of it's sandbox features. Then i'd remove any adobe >>> stuff like flash player, pdf reader, etc. >>> >>> Google Chrome comes with Flash player built in , so you might want to >>> skip Chrome. >> >> unfortunately i need those. i have mandatory access to kill >> misbehaving programs but i would rather have multiple defences in the >> applications i use the most. >> >> i think ill have to bite the bullet and submit patches. Drexx Laggui -- CISA, CISSP, CFE Associate, ISO27001 LA, CCSI, CSA http://www.laggui.com ( Manila & California ) Computer forensics; Penetration testing; QMS & ISMS developers; K-Transfer PGP fingerprint = 0117 15C5 F3B1 6564 59EA 6013 1308 9A66 41A2 3F9B _________________________________________________ Philippine Linux Users' Group (PLUG) Mailing List http://lists.linux.org.ph/mailman/listinfo/plug Searchable Archives: http://archives.free.net.ph
