|
Contributed by Chad Brandt
|
|
|
|
Tuesday, 07 September 2004
The National Security Agency's SELinux is a set of kernel patches and utilities that provides Linux with the fine-grained access controls of a trusted operating system. SELinux, which we tested as it ships with Red Hat's Fedora Core 2, can serve companies well on machines that host potentially vulnerable Internet-facing servicesSELinux is a set of kernel patches and utilities that boosts the security of the Linux system on which it's enabled by providing for the enforcement of mandatory access control policies.
For example, we could configure a Web server to serve read-only pages, delegating the rights needed to generate or modify the pages to a separate role.
The set of Linux kernel patches and tools that make up SELinux may be used with a variety of Linux distributions and is available for free download at www. nsa.gov/selinux/code/download5.cfm.
Read Full Story Only registered users can write comments.
Please login or register. Powered by AkoComment 1.0 beta 2! |
Home 
