Language Selection

English French German Italian Portuguese Spanish

SELinux vs AppArmor vs Grsecurity

Filed under
Linux
Security
HowTos

Linux kernel is the central component of Linux operating systems. It is responsible for managing the system's resources, the communication between hardware and software and security. Kernel play a critical role in supporting security at higher levels. Unfortunately, stock kernel is not secured out of box. There are some important Linux kernel patches to secure your box. They differ significantly in how they are administered and how they integrate into the system. They also allow for easy control of access between processes and objects, processes and other processes, and objects and other objects. The following pros and cons list is based upon my personal experience.

SELinux
Security-Enhanced Linux (SELinux) is a Linux feature that provides a variety of security policies for Linux kernel. It is included with CentOS / RHEL / Fedora Linux, Debian / Ubuntu, Suse, Slackware and many other distributions.

AppArmor
AppArmor (Application Armor) is another security software for Linux which maintained and released by Novell under GPL. AppArmor was created as an alternative to SELinux. AppArmor works with file paths.

grsecurity
grsecurity is a set of patches for the Linux kernel with an emphasis on enhancing security. It utilizes a multi-layered detection, prevention, and containment model. It is licensed under the GPL.

full story




More in Tux Machines

OpenMandriva Lx 3.0 Linux Is Coming Soon with Mesa 3D 12.0, Latest KDE Goodies

Kate Lebedeff from the OpenMandriva project informed Softpedia about the availability of the first Release Candidate (RC) development build of the upcoming OpenMandriva Lx 3.0 operating system. Read more

Korora 24 "Sheldon" Linux Is Available Only for 64-bit PCs, Based on Fedora 24

After a long wait, the Korora 24 GNU/Linux distribution has been released, based, as its version number suggests, on many of the technologies included in the popular Fedora 24 operating system. Read more

Women In Tech: Jane Silber, CEO Of Canonical

When I sat down to interview Jane Silber, CEO of Canonical, I don’t think it was lost on either of us that our ability to chat freely even though I was in my office in the middle of the U.S. and she was in her office in London, England had everything to do with cloud computing, an area in which her company does brisk business. Silber has been running Canonical (maker of Ubuntu, among a great many other software products) in one form or another for well over a decade at this point, first as COO and now CEO. She answers questions thoughtfully, with carefully chosen words; even though I’m sure I’m not the first journalist to ask her some of the below questions (maybe not even the first one this week), she had no canned responses, and she never veered off course to discuss her own agenda. There were no preset talking points; simply, I asked questions, and she answered them. Read more

Chakra GNU/Linux Users Get KDE Plasma 5.7.2, Qt 5.7 and KDE Applications 16.04.3

Chakra GNU/Linux developer Neofytos Kolokotronis today, July 25, 2016, announced the release of the latest KDE and Qt technologies, along with new software versions in the main repositories of the Linux kernel-based operating system. Read more