On Mon, Jan 22, 2007 at 12:53:04AM -0500, Roberto C. Sanchez wrote: > On Sun, Jan 21, 2007 at 11:36:15PM -0500, cga2000 wrote: > > > > What I had in mind was a flexible model where different actors of the > > system can be provided with the privileges required to perform their > > duties--no more .. no less. > > > You want selinux. At the moment, Etch will include SELinux support but it will not be active. The two policies for it are strict and targeted. Targeted policy is more developed as it suites more common useage for protection from external attacks only for a webserver. At this point, if you want internal protection also, then you will have to develop a custom policy based upon the current strict policy. Cheers, Kev -- | .''`. == Debian GNU/Linux == | my web site: | | : :' : The Universal |mysite.verizon.net/kevin.mark/| | `. `' Operating System | go to counter.li.org and | | `- http://www.debian.org/ | be counted! #238656 | | my keysever: subkeys.pgp.net | my NPO: cfsg.org |
Attachment:
signature.asc
Description: Digital signature