From: Jakob Oestergaard <jakob@unthought.net>
To: Russell Coker <russell@coker.com.au>
Cc: selinux@tycho.nsa.gov, Don Marti <dmarti@zgp.org>
Subject: Re: box is back
Date: Mon, 27 Jan 2003 01:56:30 +0100 [thread overview]
Message-ID: <20030127005630.GA14156@unthought.net> (raw)
In-Reply-To: <200301211359.35581.russell@coker.com.au>
On Tue, Jan 21, 2003 at 01:59:35PM +0100, Russell Coker wrote:
> I have a new SE Linux play machine online.
> ssh -p 222 root@adsl.coker.com.au
> Password "1234"
>
Hello Russel,
And thanks for putting the box up, for us newbies to toy with ;)
Two (minor, allright) things that caught my attention;
1) One can see dmesg, when in the user_r role. This means, I can see
what everyone else tried and did - which may (?) in turn reveil
information about which files exist in places I'm not supposed to
know about.
2) One can see all PIDs in /proc
Yes, it's not possible to look further than that - but it still gives
valuable information (such as, how much logging is this box likely to
run - by looking at which low-numbered PIDs exist). It's a fairly
high bandwidth covert channel as well, but I guess that's not really
a concern for the moment ;)
I don't know if any of this is a concern - I think the dmesg one is the
serious one (if I'm not completely mistaken about it).
Anyways, Cheers!, and thanks again,
--
................................................................
: jakob@unthought.net : And I see the elder races, :
:.........................: putrid forms of man :
: Jakob Østergaard : See him rise and claim the earth, :
: OZ9ABN : his downfall is at hand. :
:.........................:............{Konkhra}...............:
--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.
next prev parent reply other threads:[~2003-01-27 0:56 UTC|newest]
Thread overview: 3+ messages / expand[flat|nested] mbox.gz Atom feed top
2003-01-21 12:59 box is back Russell Coker
2003-01-27 0:56 ` Jakob Oestergaard [this message]
2003-01-27 8:56 ` Russell Coker
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20030127005630.GA14156@unthought.net \
--to=jakob@unthought.net \
--cc=dmarti@zgp.org \
--cc=russell@coker.com.au \
--cc=selinux@tycho.nsa.gov \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.