Novell releases AppArmor
Posted Jan 12, 2006 13:29 UTC (Thu) by nix
Parent article: Novell releases AppArmor
I've been avoiding SELinux because of its sheer complexity and overdesign: I don't need labelled security, and neither does anyone else I know: filenames are perfectly adequate labels. This looks *much* more maintainable (as in `practical for a mortal human to write a set of policies'). It's very nice that there's now a demarcation between `coarse root-only security' and SELinux.
(And, hey, something that uses capabilities for something near their intended purpose! Wow!)
to post comments)