Re: Ubuntu machine uncracked in Pwn to Own contest
Posted by: Anonymous
[ip: 83.240.230.238]
on April 02, 2008 12:44 PM
Probably it could affect Ubuntu if the system allowed that process and user to access the system freely.
On a O.S. a process runs using an access account, on XP if you take a look at taskmanager (Ctrl+Alt+Del) on the process tab you will see the list of processes running and which user responsible for the process. This means that every time a program is active its associated to a user account, it can be a real user or a system account used for that purpose, that program will have access to what the user running it has.
The security of cross platform applications has a lot to do with the way O.S. allows the application to run, its has a lot to do with security implementation on the system. Any Ubuntu user knows that for most of the critical O.S. need to be run trough sudo otherwise system won't allow them to do much.
On my Linux box when I open a browser the aplication is Firefox and the user is wwwrun, the browser is running on a different account probably with more restrictions than my user account. On XP the browser runs with the same restrictions that my user account which is by the away an administrator account. Its all about security implementation on the O.S.
Learn about Linux
Download Linux
Get Linux help
Re: Ubuntu machine uncracked in Pwn to Own contest
Posted by: Anonymous [ip: 83.240.230.238] on April 02, 2008 12:44 PMOn a O.S. a process runs using an access account, on XP if you take a look at taskmanager (Ctrl+Alt+Del) on the process tab you will see the list of processes running and which user responsible for the process. This means that every time a program is active its associated to a user account, it can be a real user or a system account used for that purpose, that program will have access to what the user running it has.
The security of cross platform applications has a lot to do with the way O.S. allows the application to run, its has a lot to do with security implementation on the system. Any Ubuntu user knows that for most of the critical O.S. need to be run trough sudo otherwise system won't allow them to do much.
On my Linux box when I open a browser the aplication is Firefox and the user is wwwrun, the browser is running on a different account probably with more restrictions than my user account. On XP the browser runs with the same restrictions that my user account which is by the away an administrator account. Its all about security implementation on the O.S.
#