On 05/09/2016 03:52 PM, Rick Stevens wrote:
On 05/09/2016 12:19 PM, CS DBA wrote:
- If I want to use the plugin package:
you must turn off SELinux controls on the Firefox plugins. # setsebool -P unconfined_mozilla_plugin_transition 0
I wouldn't go so far as to reinstall. SELinux has blocked a request-- specifically from Firefox--to open a rawip socket and that's what it's supposed to do. Why Firefox tried to do that is a guess, but I think you visited a site with some evil Javascript stuff in it and it's the javascript that's trying to open the port. Since the Javascript would be running in the context of the browser, SELinux reported that Firefox was doing it. Note that antics such as this is another reason to not just blithely allow Javascript to run in your browser. I certainly don't.
It's extremely unlikely to be javascript since javascript doesn't have that kind of access. Note what the message says. The boolean refers to "mozilla_plugin", so it's most likely flash.
Linux is a bit more impervious to the nefarious actions of the evil hackers out there than MacOS and a lot more so that Winblows, but it isn't perfect. If you're surfing the web, wear a full-body condom or two. And always remember the motto:
I have never used anti-virus software on a Linux computer. The only time I've seen malware on a Linux computer is when there has been a weak password on an account (generally root) and no rate-limiting on the ssh port.