[ale] Trojan mpg123 alert

Dow Hurst dhurst at kennesaw.edu
Tue Jan 21 11:20:59 EST 2003 

Yes, exactly.  Have the separate throwaway user ready so you can use it 
as a disposable "point man" when in enemy territory, ie. The Internet.
I am reading the discussions on separate instances of X on different 
terminals with interest since this is an alternate method of "hot 
switching" between users.  As long as I have a separate instance of a 
browser or email client window on a separate paged desktop it doesn't 
really seem necessary to have separate X servers running.  However, the 
speed of SSH can slow stuff down on a slow box unless you don't use a 
cipher.
Dow


Jason Day wrote:

>On Wed, Jan 15, 2003 at 11:03:06PM -0500, Stephen F Nicholas wrote:
>  
>
>>Slap me if I read this incorrectly.  People surf the web under their root
>>account ?? :-(
>>    
>>
>
>I haven't read Bob's book (yet :)), but when I read Dow's message I
>thought Bob was recommending creating a special user account just for
>browsing the web.  In other words, run X as your normal user (not root).
>But when you want to run a browser, ssh to localhost and login as the
>browser user, then start the browser as that user.  That way, you can
>minimize the damage if your browser process gets compromised.
>  
>
>>On Wed, 15 Jan 2003, Dow Hurst wrote:
>>    
>>
>[...]
>  
>
>>>Bob recommends web browsing as a separate user.  Especially if you are 
>>>using plugins, java, or javascript enabled.  I think ssh'ing to your 
>>>machine as the untrusted user to run the apps would work okay.  Or, for 
>>>the dual screen people, instead of running Xinerama, use two separate 
>>>Xservers and log in as separate users.
>>>      
>>>

-- 
__________________________________________________________
Dow Hurst                  Office: 770-499-3428
Systems Support Specialist    Fax: 770-423-6744
1000 Chastain Rd., Bldg. 12
Chemistry Department SC428  Email:dhurst at kennesaw.edu
Kennesaw State University         Dow.Hurst at mindspring.com
Kennesaw, GA 30144
*********************************
*Computational Chemistry is fun!*
*********************************


_______________________________________________
Ale mailing list
Ale at ale.org
http://www.ale.org/mailman/listinfo/ale

More information about the Ale mailing list