Full Story on:
thehackernews.com
yeah but my fedora firefox runs firejailed behind selinux -- is it safe? probably not, I assume the bad guys are at least 1 step ahead of me, but I'm not paranoidDon`t open unsolicited emails with rar attachments like as if you would?
Regards Eck
Maybe with that extra security you`re tempted to open it as a test to prove how invulnerable you are ?yeah but my fedora firefox runs firejailed behind selinux -- is it safe? probably not, I assume the bad guys are at least 1 step ahead of me, but I'm not paranoid
Helluva setup there , not sure anything could breach that but maybe replace Fedora with Qubes and connect using a Starlink proxy in Area 51 and your setyeah but my fedora firefox runs firejailed behind selinux -- is it safe? probably not, I assume the bad guys are at least 1 step ahead of me, but I'm not paranoid
The combination of Firejail and SELinux would provide significant protection against the VShell attack chain. Neither of these technologies is designed to block the initial download, but they are highly effective at preventing the subsequent steps of the attack.yeah but my fedora firefox runs firejailed behind selinux -- is it safe? probably not, I assume the bad guys are at least 1 step ahead of me, but I'm not paranoid
Security-Enhanced Linux (SELinux) is a security architecture for Linux® systems that allows administrators to have more control over who can access the system. It was originally developed by the United States National Security Agency (NSA) as a series of patches to the Linux kernel using Linux Security Modules (LSM).Maybe with that extra security you`re tempted to open it as a test to prove how invulnerable you are ?
Where as if you were running plain vanilla you`d be that bit more cautious, which makes having more security less security, if you see what I mean?
What is selinux by the way ?
Regards Eck
Qubes would rather run in hardware computer (from what I've read) -- I'm not there... yetHelluva setup there , not sure anything could breach that but maybe replace Fedora with Qubes and connect using a Starlink proxy in Area 51 and your set
plus some select browser extensions... etc. And (but) chatGPT 5 thinks my M4 mac_mini is the strongest computer (I'm lucky enough to have).
Thanks for the information simmerskoolSecurity-Enhanced Linux (SELinux) is a security architecture for Linux® systems that allows administrators to have more control over who can access the system. It was originally developed by the United States National Security Agency (NSA) as a series of patches to the Linux kernel using Linux Security Modules (LSM).
SELinux was released to the open source community in 2000, and was integrated into the upstream Linux kernel in 2003.
and I am reasonably careful even in this VM.
What is SELinux?
Security-Enhanced Linux (SELinux) is a security architecture for Linux® systems that allows administrators to have more control over who can access the system.www.redhat.com
seems like you`re all set to repulse a combined land and sea invasion from a foreign country with all that granular control you have. SELinux is a powerful security tool, but it's just one part of keeping your Fedora system safe. A solid security foundation requires a few other critical steps.
thanks I've done most or all of the above, and yes fedora has system & software updates nearly every day. I have used lynis (free) to harden with chatgpt suggestions and various comments mentioned here at MT.
Yeah, hardening a system with Lynis is quite the task. Some of the suggestions are easy, but it gets tricky with the moderately challenging ones like hardening SSH or tuning kernel parameters. The more advanced stuff, like working with SELinux policies, custom scripting, or implementing advanced crypto settings, can definitely be overwhelming for new and intermediate users.
