Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
Integrity EVM / IMA - few questions.
View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
Jacekalex
Guru
Guru


Joined: 17 Sep 2009
Posts: 536

PostPosted: Sat Jun 08, 2013 6:49 pm    Post subject: Integrity EVM / IMA - few questions. Reply with quote

Hi

My system:
Gentoo Hardened - grsec & pax:
Linux version 3.9.4-grsec (root@localhost) (gcc version 4.6.3 (Gentoo Hardened 4.6.3 p1.5, pie-0.5.2) ) #6 SMP PREEMPT Fri Jun 7 19:05:38 CEST 2013

I have a few questions about Integrity check using IMA / EVM, as described in this article:
http://www.gentoo.org/proj/en/hardened/integrity/


How to automatically sign installed by Portage packages for the IMA and EVM?
Is it possible to run the added convenience Portage, acting similarly to currently applying SELinux tags?
Is there a tool similar to rlpkg package policycoreutils to sign files for EVM / IMA?

Is it possible to use EVM/IMA is installed in accordance with this guide:
http://www.gentoo.org/proj/en/hardened/integrity/docs/evm-guide.xml
without SELinux?
As in this case (without SELinux) to the EVM/IMA policy integrity check that did not include such locations as
Code:
/usr / share
/ var / log
 /tmp
/var
  / usr / portage
  /media
/usr/src
Where
/ var, /tmp and / usr is on rootfs?

Cheers
;)
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum