Hardening systems with AppArmor

GOLDEN CAGE

Author(s):

After penetrating a remote system, intruders might think they are home and dry, but AppArmor spoils the fun, locking the miscreants in a virtual cage.

Nobody’s perfect – and this is particularly true of software. Any non-trivial application will have its fair share of programming errors. Intruders exploit these errors, taking control of the software, and making the program do things the developer never envisaged. The situation starts to become critical if the application has privileges that are different from the privileges of the attacker. For example, the ping command requires root privileges in order to send the special packet formats that it needs. But it is theoretically possible for the process to misuse its root privileges to cause all kinds of trouble. Although ping is a well-behaved program, an attacker capable of hijacking the tool would have unrestricted access to the rest of the system.

Our Services

Read full article as PDF » Hardening_Systems_with_Apparmor.pdf (359.41 kB)
comments powered by Disqus

Visit Our Shop

Trial Subscription

Digital Subscription

Subscribe

Direct Download

Read full article as PDF » Hardening_Systems_with_Apparmor.pdf (359.41 kB)

Tag Cloud

Android Bruce Byfield Gnome KDE Linux Linux Pro Magazine Open Source Projects Red Hat Ubuntu events foss free software google

News