On 01/16/2015 04:31 PM, Gordon Messmer wrote:
If your computer is single-user anyway, why does it need a security
subsystem?
Sometimes it protects you from badly-written software. My desktop uses
BOINC to run various projects for the World Community Grid. One project
started throwing up constant SELinux alerts because it kept trying to
walk all of /proc, something it had no business doing. After several of
us reported it, the project was withdrawn until it could be debugged.
Not malware, just a careless programmer, but if it had tried to write to
random locations in /proc, it could have caused considerable damage to
people's systems.