The Savannah Compromise - what really happened?
Posted Jan 8, 2004 23:06 UTC (Thu) by Ross
In reply to: The Savannah Compromise - what really happened?
Parent article: The Savannah Compromise - what really happened?
Oh, yes, I completely agree in that case. But people weren't careful to
limit their arguments to that case. In fact, with a root-exploitable
kernel bug any attacker that can run arbitrary code can access the whole
system, no matter what user they run the code as or what type of jail the
code is put into. In short, having a secure kernel is a requirement for
any other security on the system so long as untrusted users have access to
to post comments)