cross-platform virus
Jan Claeys
lists at janc.be
Tue Apr 11 14:52:07 BST 2006
Op di, 11-04-2006 te 08:07 +0800, schreef John:
> What I have in mind is a means whereby a program loaded from an untrused
> location cannot, by any means, run any program from any location such
> that the program has elevated privilege.
>
> EG A program in ~/bin cannot run fdisk with root privileges, with or
> without su, sudo or runas.
>
> OS/VS (a family of IBM operating systems) implemented this over 30 years
> ago, it's not a new idea.
>
> A process _may_ be privileged only if it and all its parents are loaded
> from trusted locations, typically all the standard bin (and lib?)
> directories.
<https://wiki.ubuntu.com//UbuntuHardened>
--
Jan Claeys
More information about the sounder
mailing list