On Wed January 30 2008, Victor Lowther wrote: > True. The way to defend against these scenarios is to ensure that all > our files and directories are owned by and only writable by root. If > an intruder already has root, pm-utils cannot defend against any > actions that user can take.
If I find the time, I will test whether selinux would prevent pm-utils from cleaning out /etc/passwd when the logfile is a symlink to it. I guess selinux could help here. Regards, Till
signature.asc
Description: This is a digitally signed message part.
_______________________________________________ Pm-utils mailing list [email protected] http://lists.freedesktop.org/mailman/listinfo/pm-utils
