SearchOpenSource: SELinux Policy Editor: Removing Micromanagement from Administrative Control
Aug 24, 2006, 04:30 (0 Talkback[s])
(Other stories by Justin Korelc, Ed Tittel)
[ Thanks to Jane Walker for this link.
"Administrators often criticize Security Enhanced Linux
(SELinux) policies for being too complex, and they have a point.
Mandatory access control-based administration is tedious and easy
to misconfigure. It can be tough to handle the extended security
attributes across a range of users, processes and files or
directories that encompass more than one server. Novell addresses
this problem in its enterprise-class server offerings with the
AppArmor suite of policy management applications, but nothing
comparable exists yet for systems management in Red Hat enterprise
servers (or CentOS derivatives)..."