| 1 |
Hi! |
| 2 |
|
| 3 |
On Sun, Feb 24, 2008 at 06:15:22AM -0800, Grant wrote: |
| 4 |
> Are a hardened profile, kernel, and related USE flags beneficial on a |
| 5 |
> machine on which only I log in and no ports are open? |
| 6 |
|
| 7 |
If you open website, or download and run mp3, or download and open .xls, |
| 8 |
etc. - do any action which result in receiving and processing complex data |
| 9 |
format (i.e. not plain text :)), then there may be a security hole in |
| 10 |
software which will process that data. In this case hardened MAY protect |
| 11 |
you. |
| 12 |
|
| 13 |
To be honest I never heard about hacking Linux workstation this way, Linux |
| 14 |
is usually hacking by attacking network services. |
| 15 |
|
| 16 |
But this way to hack is very popular on Windows, and nobody can guarantee |
| 17 |
you'll never will be hacked this way on Linux (or course, on Linux only |
| 18 |
your current user's account will be compromised, but if this attack will |
| 19 |
result in removing all files in your home directory you will not be very |
| 20 |
happy with the fact this attack doesn't compromised your root and other |
| 21 |
user's accounts). |
| 22 |
|
| 23 |
-- |
| 24 |
WBR, Alex. |
| 25 |
-- |
| 26 |
gentoo-hardened@l.g.o mailing list |
Archives