Linux security non-modules and AppArmor
Posted Jun 28, 2007 16:50 UTC (Thu) by flewellyn
In reply to: Linux security non-modules and AppArmor
Parent article: Linux security non-modules and AppArmor
It is true, though, that SELinux is kind of hard to use. Some higher-level policy-editing tools would be really helpful, I think.
Alternatively, since SELinux is an architecture, perhaps some of the policies built on it could be flexible abstractions themselves, so that they would define a simpler "language" for defining what the users want to do. Sort of analogous to what glibc does with abstracting away kernel interfaces.
to post comments)