Running Firefox for the truly paranoid

To have the safest browsing experience, you can run Firefox in a 'sandbox'.

But first you have to:

1. install Fedora 14
   (not tested in Fedora 13)
   

2. yum install policycoreutils-sandbox
   (this needed to supply 'sandboxX.sh' )
   

3. create a directory 'sehome' in your home directory(you can use a directory with a different name if you so wish)
   
   

The following article explains how run Firefox in a very secure environment:
[…]
Now, Firefox is pretty useless without network access. The good news is that you have sandbox types that allow for Web browsing. Here's what you want to run to get a Firefox session going:

sandbox -X -H sehome -T tmp -t sandbox_web_t firefox

Here you're adding two things — the -X option, which tells SELinux "hey, I want an X sandbox," and the type (-t) option which specifies a set of policies that offer the services (like networking) that Firefox needs to operate in a sane way.
[…]

PostgreSQL 9.0.1 released fixing security, an infinite loop, and other issues

The source of PostgreSQL 9.0.1 can be downloaded now. Note that at the time of writing, it had not been formally announced.

The Release Notes include the following items:

Use a separate interpreter for each calling SQL userid in PL/Perl and PL/Tcl (Tom Lane)

This change prevents security problems that can be caused by subverting Perl or Tcl code that will be executed later in the same session under another SQL user identity [...]

Our thanks to Tim Bunce for pointing out this issue (CVE-2010-3433).

[...]

Prevent infinite loop in ProcessIncomingNotify() after unlistening (Jeff Davis)

[...]

Prevent show_session_authorization() from crashing within autovacuum processes (Tom Lane)

[...]