funsec mailing list archives

Re: It's ... SUPER-USER!

From: Joel Esler <joel.esler () me com>
Date: Mon, 02 Sep 2013 08:08:50 -0400

Wonder how many people are dumping selinux now. 

--
Joel Esler

On Aug 30, 2013, at 7:44 PM, Valdis.Kletnieks () vt edu wrote:

On Fri, 30 Aug 2013 15:20:52 -0700, "Rob, grandpa of Ryan, Trevor, Devon & Hannah" said:

According to the NSA, "NOBODY could stop Snowden – he was A SYSADMIN!"


If they were using SELinux with the MLS policies, even as sysadmin he couldn't
have done that stuff without being detected, because the sysadmin user and the
audit/security user are two separate roles, and sysadmin can't touch the
audit logs nor can they su to 'audit'.

Maybe they should go talk to the people who developed SELinux.

Oh wait...

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Current thread:

It's ... SUPER-USER! Rob, grandpa of Ryan, Trevor, Devon & Hannah (Aug 30)
- Re: It's ... SUPER-USER! Stephanie Daugherty (Aug 30)
- Re: It's ... SUPER-USER! Valdis . Kletnieks (Aug 30)
  - Re: It's ... SUPER-USER! Joel Esler (Sep 02)