Mailinglist Archive: opensuse (2803 mails)
| < Previous | Next > |
Re: [opensuse] Re: A BIG "show stopper" for openSUSE at the corporate level anyway!!
- From: Anders Johansson <ajh@xxxxxxxxxx>
- Date: Wed, 9 Jul 2008 22:39:48 +0200
- Message-id: <200807092239.48769.ajh@xxxxxxxxxx>
On Wednesday 09 July 2008 20:57:29 Jim Henderson wrote:
AppArmor primarily exists to protect servers. It has nothing whatever in
common with anti-virus programs.
Servers generally don't need user input to do something, they wouldn't scale
very well if they did - this is why they need extra protection.
If apache required the sysadmin to confirm each and every GET or POST, then we
would never have any issue with defacements, and apparmor would not be
needed, you are correct
Anders
--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse+help@xxxxxxxxxxxx
Because just like Antivirus on Linux, the only thing that AppArmor is
doing is preventing a user-initiated program from making changes to the
system; changes that wouldn't happen if the user were being smart.
AppArmor primarily exists to protect servers. It has nothing whatever in
common with anti-virus programs.
Servers generally don't need user input to do something, they wouldn't scale
very well if they did - this is why they need extra protection.
If apache required the sysadmin to confirm each and every GET or POST, then we
would never have any issue with defacements, and apparmor would not be
needed, you are correct
Anders
--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse+help@xxxxxxxxxxxx
| < Previous | Next > |