A seatbelt for server software: SELinux blocks real-world exploits (LinuxWorld)
[Posted February 25, 2008 by jake]
Over at LinuxWorld, Don Marti
takes a look at SELinux mitigating real security threats. "
But the announcements of several recent security holes tell a new story: SELinux, if turned on, can prevent an attacker from using an exploit to its full destructive potential. For example, one vulnerability in the Hewlett-Packard Linux Imaging and Printing Project's software would have allowed an attacker to run arbitrary commands as root."
(
Log in to post comments)