On Wed, 2005-06-22 at 08:53 -0400, Paul A Houle wrote:
[...]
It's not so clear that SELinux helps much against real
attacks. It
would take a much tougher security model than the Unix model or even the
SELinux model to stop the virus and zombie infections that we're seeing
in the Windows world. Things like NX that prevent or complicate buffer
overflow attacks may be more useful.
[...]
Root access would be nice -- that would let me run a packet
sniffer, install a root kit, and generally make it a lot harder to
clean up the mess, but modern crackers (who are attacking networks,
not individual computers) don't need it.
Paul, there are several SE Linux machines on the internet that offer you root access.
Please be the first to demonstrate that you can crack them. That way we can make them
better...
M