LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

Pencil, Pencil, and Pencil

Dividing the Linux desktop

LWN.net Weekly Edition for June 13, 2013

A report from pgCon 2013

Little things that matter in language design

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

SLIDE into SELinux policy development

SLIDE into SELinux policy development

Posted Feb 8, 2007 1:54 UTC (Thu) by jamesm (guest, #2273)
Parent article: SLIDE into SELinux policy development

You're right that it won't be useful unless you already know about SELinux policies. SLIDE is intended as a tool for policy developers, such as distro developers, people working on custom security projects etc., and not for package developers or sysadmins. Other projects are being developed for these purposes as the underlying infrastructure matures. An example of this is Madison, being developed by Karl MacMillan, which is intended to:

Provide tools suitable for Linux administrators who are not SELinux experts. The tools guide administrators throuch complex security decisions.

(Log in to post comments)

SLIDE into SELinux policy development

Posted Feb 8, 2007 16:48 UTC (Thu) by Method (guest, #26150) [Link]

Madison is good development with potential to assist in policy development but it is still a work in progress, primarily a library and a replacement for audit2allow so it only helps when denials happen. There are also some potential plans to integrate Madison into SLIDE in the future.

<shameless product plug> Brickwall, a product developed by the company I work for, helps write policy without knowledge of types and can confine network services to specific interfaces and networks. </shameless product plug>

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds