| View previous topic :: View next topic |
| Author |
Message |
Woldamer
n00b
Joined: 30 May 2006
Posts: 32
|
 Posted: Tue May 30, 2006 2:19 pm Post subject: [Poll:] Which one do you use: SELinux, RSBAC, grsecurity? |
 |
|
Hi!
I try to make a decisition of using one of this the security systems... ( https://forums.gentoo.org/viewtopic-t-466770.html )
So I wonder, how many of you use which system...
...and why you've chosen that
But I can't create any poll, so please post your polling...
Thanks a lot |
|
| Back to top |
|
 |
nielchiano
Veteran
Joined: 11 Nov 2003
Posts: 1287
Location: 50N 3E
|
| Posted: Tue May 30, 2006 9:55 pm Post subject: |
|
|
| I use grsecurity... mainly because it was the first thing I found and wasn't overly complicated... (I know, shame on me, but it's only a home-server with full firewall and dynamic IP and yada yada) |
|
| Back to top |
|
|
kang
Retired Dev
Joined: 17 May 2002
Posts: 60
|
| Posted: Thu Jun 01, 2006 2:24 pm Post subject: |
|
|
try not to spread out on many topics 
I use RSBAC, I guess, because I'm a RSBAC dev. Well, right, that's biased and really non-objective opinion that you'll get now 
We are currently really trying to do the documentation (webpage changed every single day;)
and we released a new version again today (1.2.7)
Without the upcomming tools-that-i-should-finish and the documentation-that-we-are-writing-everyday it's not the easiest, but it's not very hard either. There are even dialog menus to hand-drive you a bit.
I would say, that grsec is probably easier to setup with rbac. most functionality are sysctl flags or the rbac config. But RSBAC is flexible and covers more than grsecurity does to my knowledge. Actually, im not against any other solution than RSBAC, I tried them and they're not bad but the way it's designed is different.. :
RSBAC is more a framework, means, while having the same functionality and more, every setting is stored the same way, everything that can be generic is (it could have a selinux or grsec-rbac module that is compatible for example.. even if that is a bit useless since we have similar models). Apart from that, being grsec, selinux or RSBAC, all 3 have some role-like model that is "mostly" similar, RC for RSBAC, RBAC in grsec and selinux's domains/TE.
In any case, you can find most rsbac features here: http://rsbac.org/documentation/rsbac_handbook/introduction/features
Hope it help ^^ |
|
| Back to top |
|
|
Woldamer
n00b
Joined: 30 May 2006
Posts: 32
|
| Posted: Thu Jun 01, 2006 3:36 pm Post subject: |
|
|
Hi Thanks!
I try to figure out, how many assistance I can get here on which framework/kernel patch.
Personally I think RSBAC is a great think because of it's modularity, but I've only limited ressources, so I've make a decision between power and simplicity.
There are some days until I start to use some kernel patch...
Bye |
|
| Back to top |
|
|
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
Networking & Security
