Linux security non-modules and AppArmor
Posted Jun 28, 2007 22:19 UTC (Thu) by flewellyn
In reply to: Linux security non-modules and AppArmor
Parent article: Linux security non-modules and AppArmor
True enough. What I'm thinking of is some kind of higher-level policy which (for instance) organizes programs and files into groups. Then you add the group tag to a user, and that user has access (notwithstanding any DAC restrictions) to that set of programs and files. Somewhat akin to how traditional UNIX groups are used, except with MAC enforcement.
Or am I being silly?
to post comments)