OT: Linux Malware is possible? if it is :(
Bruno Wolff III
bruno at wolff.to
Thu Dec 3 00:30:48 UTC 2009
On Thu, Dec 03, 2009 at 00:06:29 +0000,
Marko Vojinovic <vvmarko at gmail.com> wrote:
> If /bin gets compromised, *everyone's* data gets compromised. /bin is better
> protected from you than your home dir because you may not be the only user on
> the machine. While it is impossible to protect your own data from you, it *is*
> possible to protect data of *other* users from you (in case you get
> compromised). Linux is designed as a multiuser OS (unlike Windows), hence
> better protection for system files.
SELinux allows for some protection of your data from you. For example you
can have policy keep web browsers, email readers or other dangerous (in that
they process externally provided data or are provided by corporations whose
marketting departments reign supreme) applications from reading parts of your
home directory.
More information about the fedora-list
mailing list