Voytek Eymont wrote: > thanks, Andrew > > unfortuantly, it seems my user does have vulnerable version of Joomla... > clearly he is not following Mambo/Joomla advisories...
If you allow your users to install their own versions of X, then your distribution's patching mechanism is bypassed and you have no way of easily keeping up to date with patches. One way of dealing with this is to make each user run in a chroot/UML/Xen/whatever instance so that when their environment is compromised it only affects them and not everyone else on the machine. Erik -- +-----------------------------------------------------------+ Erik de Castro Lopo +-----------------------------------------------------------+ "Hundreds of thousands of people couldn't care less about Kylix and what it runs on. It's there for the dying breed of die-hard Pascal fanatics who missed their 20 year window to migrate to C and C++." -- Kaz Kylheku in comp.os.linux.development.apps -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
