Posted Sep 23, 2004 19:10 UTC (Thu) by walters
In reply to: Complexity
Parent article: An introduction to SELinux
As for extending the uid system - I'm very doubtful that you can get a system that approaches the security and flexibility that SELinux provides, and that also doesn't break existing software. SELinux has the advantage that it doesn't change what happens with the existing Linux DAC - calls to setuid(), etc just continue to work as before.
to post comments)