[buug] selinux?
f.johan.beisser
jan at caustic.org
Wed Sep 25 17:31:41 PDT 2002
On Wed, 25 Sep 2002, Mark Hedges wrote:
> Just wondering if anyone dug into NSA's selinux mandatory
> access control system yet and whether or not anyone thinks it's
> worthwhile, better served by other packages, a vast conspiracy,
> or what. --m--
selinux isn't to bad. if you need ACLs, and compartmentalisation. outside
of that, it's not all that interesting or useful. on the other hand, it's
a good implementation of a compartmentalised OS, insuring that one user
can't abuse another, nor access information they're not supposed to.. and
this includes root (root is a user, after all).
a related project that i know of, is TrustedBSD[0] (some of the features
are included in FreeBSD-CURRENT). It's not exactly the same as NSA's
SELinux, and doesn't intend to be.
[0] http://www.trustedbsd.org
-------/ f. johan beisser /--------------------------------------+
http://caustic.org/~jan jan at caustic.org
"John Ashcroft is really just the reanimated corpse
of J. Edgar Hoover." -- Tim Triche
More information about the buug
mailing list