Linked by Thom Holwerda on Wed 16th Dec 2009 21:38 UTC, submitted by whorider
Privacy, Security, Encryption This news is already a week old, but it only got submitted to us today, and I didn't notice it all. As it turns out, two malicious software packages had been uploaded to, masquerading as valid .deb packages (a GNOME screensaver and theme, respectively).
Permalink for comment 400161
To read all comments associated with this story, please click here.
It's time to think about security
by reez on Thu 17th Dec 2009 19:33 UTC
Member since:

I think it's time to think about security concepts in general.

For example all this virtualisation stuff going on could be used to make your computer more secure. What about disconnecting everything that isn't needed to interact. Create containers and containers in containers to only allow needed interaction. Make sure that only a very small part of your system can be compromised.

Don't allow every application to access your personal data or to send mails/spam.

This would also make debugging much easier. Besides this their could be a log about the containers, what they are doing, when interaction with other containers is really required. This would allow the detection of malware by analyzing the behavior and not its code.

Yeah, I know their are jails and all this stuff. The problem IMO is that their is no system to actually make it usable for everything.

There are a lot of small parts which together could create a system which would be way more secure.

IMO there needs to be a real successor to the current way of operating systems. Everything has to be more highlevel. Everyone is talking about the browser is the OS and one reason for it being hyped is that you can use a very high and abstract layer to design applications. Wouldn't it be better to create a system optimized for high level stuff, instead of providing only a low level way by itself?

I'm really not a fan of this WWW-hype and in general I think Unix does it the right way, but things change and it would be time for a newer version of doing things the right way.

The current way of thinking is to add as many security layers as possible and of course it's right to do so, but I think it has to end somewhere or you aren't able to connect security with usability (be it KISS or the "bubble-gum-way") anymore.

There are people who say all this virtualisation/high level stuff is a waste of resources, but this has also been said when the first operating system was built and when assembly was replaced by languages we now call system programming languages.

Reply Score: 1