[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[no subject]














 "http://www.w3.org/TR/html4/loose.dtd">

<li>date: Tue May 17 17:18:01 2005</li>
<li>from: jasonday at worldnet.att.net (Jason Day)</li>
<li>in-reply-to: <[email protected]></li>
<li>references: <<a href="msg00313.html">[email protected]</a>> <<a href="msg00346.html">[email protected]</a>> <<a href="msg00348.html">[email protected]</a>> <<a href="msg00350.html">[email protected]</a>> <<a href="msg00351.html">[email protected]</a>> <[email protected]> <<a href="msg00361.html">[email protected]</a>> <[email protected]> <<a href="msg00394.html">[email protected]</a>> <[email protected]></li>
<li>subject: [ale] Linux Distributions</li>

A spam relay daemon cannot bind to port 25 unless it is started as root.
That makes it less useful, since clients must be reconfigured to use a
nonstandard port.

While it is certainly possible to run a remote-control daemon as
non-root, it won't be able to hide itself and can be trivially detected
and killed.  A remote-control program that is installed and run as root
as part of a trojan or other malicious program however can also replace
system files like netstat and ps, or even install kernel modules, to
avoid detection.

As I said before, a linux box connected to the internet with an
always-on connection like DSL or cable, is, for all intents and
purposes, a server.  The fact that these arguments are 20 years old
lends them more credibility, not less.

&gt; 
&gt; &gt; I suppose, from a purely selfish point of view, it makes no difference.
&gt; &gt; Unless you're held accountable for actions an attacker takes using your
&gt; &gt; compromised computer.
&gt; 
&gt; That assumes that you can come up with something malicious that needs
&gt; root rather than a non-root account.  What action does an attacker need
&gt; root for that I could be held accountable (presumably to others) for?

See above.  Running as non-root doesn't eliminate risk, it just reduces
it.

&gt; &gt; It's really not that big a deal to add your user account to the dvd,
&gt; &gt; video, audio, games, etc. groups.
&gt; 
&gt; BINGO.  That was my original entry into this thread.  I can configure a
&gt; thousand things (thereby giving my user account god-like access) or I
&gt; can just &quot;useradd jimpop -u 0&quot;.  There really isn't much difference on a
&gt; desktop single-user PC/laptop.

Adding your user account to the audio, video, dvd, and games groups is
hardly equivalent to giving it god-like access.

&gt; &gt; &gt; &gt; there's no rationale for running as root.  
&gt; &gt; &gt; 
&gt; &gt; &gt; Sure there is.  You may not see it however.
&gt; &gt; 
&gt; &gt; It's the same old argument that always comes up: security vs.
&gt; &gt; convenience.  Like many things, it's more convenient to run as root, but
&gt; &gt; less secure.
&gt; 
&gt; HOW IS IT LESS SECURE???  Less secure for who?  The User?  LOL!  Running
&gt; as a user is just as insecure for that user.  

I thought I made it pretty clear that it's less secure for everyone
else, not necessarily for the user.  Jerry made an excellent point with
his DUI analogy.

&gt; &gt; The first requires an extra step.  If a trojan script has &quot;mkfs
&gt; &gt; /dev/hda8&quot; in it, and you execute it as root, you just lost your
&gt; &gt; filesystem.  If you execute it as a normal user you're safe.  That is,
&gt; &gt; admittedly, a contrived example, but the principle still holds.
&gt; 
&gt; First off, it is too easy to have a malicious virus try both ways (mkfs
&gt; vs sudo mkfs).  In fact, I bet it can be done in a one line perl script
&gt; to format all available partitions.  HOWEVER, the other argument being
&gt; given is that running as root allows a zombies to magically infect your
&gt; machine.  Isn't mkfs the best thing for a zombie infected machine? :-) 

I was only trying to make a point, and I even specifically said it was a
contrived example.  The point I was trying to make, apparently
unsuccessfully, was that requiring the user to become root first before
executing dangerous commands like &quot;mkfs /dev/hda8&quot; adds a small layer of
security.  A simple script that tries to execute a privileged command
will fail if run by a normal user.

And I never said &quot;running as root allows a zombies to magically infect
your machine.&quot;  Maybe I wasn't clear enough in my original post, but
surely even you can admit that accidentally executing a trojan as root
is worse than executing it as a non-root user?

Jason
-- 
Jason Day                                       jasonday at
<a  rel="nofollow" href="http://jasonday.home.att.net";>http://jasonday.home.att.net</a>                    worldnet dot att dot net
 
&quot;Of course I'm paranoid, everyone is trying to kill me.&quot;
    -- Weyoun-6, Star Trek: Deep Space 9


</pre>
<!--X-Body-of-Message-End-->
<!--X-MsgBody-End-->
<!--X-Follow-Ups-->
<hr>
<ul><li><strong>Follow-Ups</strong>:
<ul>
<li><strong><a name="00438" href="msg00438.html">[ale] Linux Distributions</a></strong>
<ul><li><em>From:</em> jimpop at yahoo.com (Jim Popovitch)</li></ul></li>
</ul></li></ul>
<!--X-Follow-Ups-End-->
<!--X-References-->
<ul><li><strong>References</strong>:
<ul>
<li><strong><a name="00313" href="msg00313.html">[ale] Linux Distributions</a></strong>
<ul><li><em>From:</em> meson3902 at gmail.com (Mark Schill)</li></ul></li>
<li><strong><a name="00346" href="msg00346.html">[ale] Linux Distributions</a></strong>
<ul><li><em>From:</em> james.sumners at gmail.com (James Sumners)</li></ul></li>
<li><strong><a name="00348" href="msg00348.html">[ale] Linux Distributions</a></strong>
<ul><li><em>From:</em> jsheets at yahoo.com (Jerald Sheets)</li></ul></li>
<li><strong><a name="00350" href="msg00350.html">[ale] Linux Distributions</a></strong>
<ul><li><em>From:</em> groups at ChangingLINKS.com (ChangingLINKS.com)</li></ul></li>
<li><strong><a name="00351" href="msg00351.html">[ale] Linux Distributions</a></strong>
<ul><li><em>From:</em> Robert.L.Harris at rdlg.net (Robert L. Harris)</li></ul></li>
<li><strong><a name="00359" href="msg00359.html">[ale] Linux Distributions</a></strong>
<ul><li><em>From:</em> jimpop at yahoo.com (Jim Popovitch)</li></ul></li>
<li><strong><a name="00361" href="msg00361.html">[ale] Linux Distributions</a></strong>
<ul><li><em>From:</em> kafka at antichri.st (George Carless)</li></ul></li>
<li><strong><a name="00368" href="msg00368.html">[ale] Linux Distributions</a></strong>
<ul><li><em>From:</em> jimpop at yahoo.com (Jim Popovitch)</li></ul></li>
<li><strong><a name="00394" href="msg00394.html">[ale] Linux Distributions</a></strong>
<ul><li><em>From:</em> jasonday at worldnet.att.net (Jason Day)</li></ul></li>
<li><strong><a name="00416" href="msg00416.html">[ale] Linux Distributions</a></strong>
<ul><li><em>From:</em> jimpop at yahoo.com (Jim Popovitch)</li></ul></li>
</ul></li></ul>
<!--X-References-End-->
<!--X-BotPNI-->
<ul>
<li>Prev by Date:
<strong><a href="msg00431.html">[ale] Linux Distributions</a></strong>
</li>
<li>Next by Date:
<strong><a href="msg00433.html">[ale] Linux Distributions</a></strong>
</li>
<li>Previous by thread:
<strong><a href="msg00416.html">[ale] Linux Distributions</a></strong>
</li>
<li>Next by thread:
<strong><a href="msg00438.html">[ale] Linux Distributions</a></strong>
</li>
<li>Index(es):
<ul>
<li><a href="maillist.html#00432"><strong>Date</strong></a></li>
<li><a href="threads.html#00432"><strong>Thread</strong></a></li>
</ul>
</li>
</ul>

<!--X-BotPNI-End-->
<!--X-User-Footer-->
<!--X-User-Footer-End-->
</body>
</html>

Prev by Date: [no subject]
Next by Date: [no subject]
Previous by thread: [no subject]
Next by thread: [no subject]
Index(es):
- Date
- Thread