Re: per session access to drives

Alan Cox (alan@lxorguk.ukuu.org.uk)
Wed, 14 May 1997 22:23:35 +0100 (BST)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Dan Hollis: "Re: Kernel Debugging Hardware"
Previous message: Alan Cox: "Re: What do you think of STREAMS?"
In reply to: Dan Merillat: "Re: per session access to drives"

> I.E. "I can't acutally DO anything on this machine, because I accidentally
> nuked /bin and /sbin, but I assume that nobody is smart enough
> to be able to replace them."

And it works. One of the best web server security tricks I ever saw was a web
server, with no useful additional binaries, remote database querying for
its database, and its entire file system burned onto a CD. Nobody is going
to put porn gifs on that one in a hurry

Neutralising services is a great strategy. You can't hack a pocket calculator
much because it has nothing to hack.

Next message: Dan Hollis: "Re: Kernel Debugging Hardware"
Previous message: Alan Cox: "Re: What do you think of STREAMS?"
In reply to: Dan Merillat: "Re: per session access to drives"