[rsbac] quick question

rsbac@rsbac.org rsbac@rsbac.org
Thu, 14 Mar 2002 14:24:00 +0000

Previous message: [rsbac] syscall wrapper (was 1.1.2 and 2.4.18)
Next message: [rsbac] quick question
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

with rsbac, the way i understand it, if set up correctly, if a program is exploited, the shell that is granted does not have full permission? eg confine sendmail to one directory, and then the /bin/sh cannot escape from that dirrectory? same with no write files etc etc...

is this correct? or if a program is exploited...does it override rsbac?

_________________________________________________
The simple way to read all your emails at thatweb
http://www.thatweb.com

Previous message: [rsbac] syscall wrapper (was 1.1.2 and 2.4.18)
Next message: [rsbac] quick question
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]