ubuntuforums-unanswered team mailing list archive

Thread
Date

Re: [Question #77670]: attack on open source

To: ubuntuforums-unanswered@xxxxxxxxxxxxxxxxxxx
From: rrnwexec <question77670@xxxxxxxxxxxxxxxxxxxxx>
Date: Tue, 21 Jul 2009 19:14:50 -0000
Reply-to: question77670@xxxxxxxxxxxxxxxxxxxxx
Sender: bounces@xxxxxxxxxxxxx

Question #77670 on Ubuntu changed:
https://answers.launchpad.net/ubuntu/+question/77670

rrnwexec proposed the following answer:
selinux is a security layer that was designed to prevent applications
from interfering with parts of the operating system that they shouldn't.
It can be thought of as a "sandbox". Rules/policies for selinux restrict
the actions that applications can do.

selinux is *not* enabled by default in Ubuntu. (The packages are present
though.)

If you open a terminal and type this command, it will tell you which version of the kernel that you are using, and the version will likely not match that in the warning, unless you have installed a custom kernel:
    uname -ros

Here's the output I get running Ubuntu 9.04 with all current updates applied:
  Linux 2.6.28-14-generic GNU/Linux

Should we worry? Probably not. The exploit is known and has been
published. Maintainers of the Ubuntu distribution check these types of
things before they release updated kernels. If an affected kernel were
to (accidentally) find its way into Ubuntu the community would alert the
maintainers *very* quickly, and things would be fixed.

-- 
You received this question notification because you are a member of UF
Unanswered Posts Team, which is an answer contact for Ubuntu.