Linux Today - SELinux vs. OpenBSD's Default Security

Linux Today
Enterprise Linux Today
Apache Today
JustLinux.com
Linux Planet
PHPBuilder
All Linux Devices

Technology Jobs

LinuxToday Newsletters

Server Daily
IT Management Daily
Subscribe News
Subscribe PR
Subscribe Security

internet.com

Internet News
Small Business

Advertise
Newsletters
Tech Jobs
E-mail Offers

Current Newswire:

Malware devs embrace open-source

A tale of two distros: Ubuntu and Linux Mint

Raspberry Pi benchmarked against Beagleboard, low price is long term

20 popular Ubuntu Linux apps you may want to try

A Selection of the Very Best Open Source Tutorials and Tools

Android Ice Cream Sandwich ported to x86 tablets, netbooks and notebooks

SECURITY: Google Chrome 17 Improves Security

How to read a CSV file in Perl?

Red Hat Brings Gluster to Amazon Cloud

New Linux kernel fixes power-saving issues

Applications Management Engineer Sr (NYC)
Next Step Systems
US-NY-New York

Post A Job | Post A Resume

:SELinux vs. OpenBSD's Default Security

SELinux vs. OpenBSD's Default Security
Sep 26, 2007, 18 :30 UTC (3 Talkback[s]) (6510 reads)

"A thread on the OpenBSD-misc mailing list compared the security of SELinux in the 2.6 Linux kernel to what's available in OpenBSD. The general opinion was that SELinux and its policy language are too complex, leading Damien Miller to note, 'every medium to large Linux deployment that I am aware off has switched SELinux off. Once you stray from the default configurations that the system distributors ship with, the default policies no longer work and things start to break.' Ted Unangst summarized, 'the problem with security by policy is that the policy is always wrong...'"

Complete Story

Related Stories:
Linus Torvalds: Linux 2.6.11-rc1(Jan 12, 2005)
Andrew Morton: Linux 2.6.9-rc3-mm3(Oct 07, 2004)
LinuxPlanet: .comment: The Distribution We Need(Oct 27, 2001)
LinuxSecurity.com: New release of the LSM-based SELinux prototype (Sep 28, 2001)