[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ale] is there hope for securing php?

Subject: [ale] is there hope for securing php?
From: jim.kinney at gmail.com (Jim Kinney)
Date: Tue, 5 Jun 2012 23:48:43 -0400

http://koji.fedoraproject.org/koji/packageinfo?packageID=7917

There is a selinux package for php that can be used to wrap it with kernel
armor that, in an selinux way, can be used to block privilege escalations
and unauthorized file writes.

It still requires an selinux guru to totally hack the rules into a custom
form for a web app but the wrapper does exist.

This would make drupal and wordpress not quite so scary to run.

-- 
-- 
James P. Kinney III

As long as the general population is passive, apathetic, diverted to
consumerism or hatred of the vulnerable, then the powerful can do as they
please, and those who survive will be left to contemplate the outcome.
- *2011 Noam Chomsky

http://heretothereideas.blogspot.com/
*
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.ale.org/pipermail/ale/attachments/20120605/ee8aaba2/attachment.html

Follow-Ups:
- [ale] is there hope for securing php?
  - From: leamhall at gmail.com (Leam Hall)

Prev by Date: [ale] Has anybody used a flash disk recovery service?
Next by Date: [ale] OT help ENDING unsolicited phone calls
Previous by thread: [ale] (conjecture) Iran moves to dump Microsoft FAST!
Next by thread: [ale] is there hope for securing php?
Index(es):
- Date
- Thread