selinux Digest, Vol 127, Issue 13
Ted Rule
ejtr at layer3.co.uk
Mon Sep 29 12:23:43 UTC 2014
On 29/09/2014 13:00, selinux-request at lists.fedoraproject.org wrote:
> Message: 2 Date: Mon, 29 Sep 2014 10:00:00 +0200 From: Florian Weimer
> <fweimer at redhat.com> To: selinux at lists.fedoraproject.org Subject: Re:
> SELinux and the bash exploit. Message-ID:
> <54291180.6020903 at redhat.com> Content-Type: text/plain; charset=utf-8;
> format=flowed On 09/25/2014 11:40 PM, Daniel J Walsh wrote:
>> > https://danwalsh.livejournal.com/71122.html
> I wonder why environment variables aren't labeled because they evidently
> cross trust boundaries in surprising fashions.
>
> -- Florian Weimer / Red Hat Product Security
Hmm. Quite so. I sense a whole raft of environmental cleansing
mechanisms being added to SELinux any minute now..
--
Ted Rule
Director, Layer3 Systems Ltd
Layer3 Systems Limited is registered in England. Company no 3130393
43 Pendle Road, Streatham, London, SW16 6RT
Tel: 020-8769-4484
Mob: 07946-908914
GPG Fingerprint = 9227:3434:b51d:c7a1:eea6:21e2:418a:8997:c104:7566
E: ejtr at layer3.co.uk
W: http://www.layer3.co.uk/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.fedoraproject.org/pipermail/selinux/attachments/20140929/f25af112/attachment.html>
More information about the selinux
mailing list