Language Selection

English French German Italian Portuguese Spanish

SELinux vs AppArmor vs Grsecurity

Filed under
Linux
Security
HowTos

Linux kernel is the central component of Linux operating systems. It is responsible for managing the system's resources, the communication between hardware and software and security. Kernel play a critical role in supporting security at higher levels. Unfortunately, stock kernel is not secured out of box. There are some important Linux kernel patches to secure your box. They differ significantly in how they are administered and how they integrate into the system. They also allow for easy control of access between processes and objects, processes and other processes, and objects and other objects. The following pros and cons list is based upon my personal experience.

SELinux
Security-Enhanced Linux (SELinux) is a Linux feature that provides a variety of security policies for Linux kernel. It is included with CentOS / RHEL / Fedora Linux, Debian / Ubuntu, Suse, Slackware and many other distributions.

AppArmor
AppArmor (Application Armor) is another security software for Linux which maintained and released by Novell under GPL. AppArmor was created as an alternative to SELinux. AppArmor works with file paths.

grsecurity
grsecurity is a set of patches for the Linux kernel with an emphasis on enhancing security. It utilizes a multi-layered detection, prevention, and containment model. It is licensed under the GPL.

full story




More in Tux Machines

solydxk Ready for the transition and new ISOs

The team has been toiling night and day to make the transition to Debian Jessie and Debian Wheezy as smooth as possible for you. Everything is ready and you should now be able to upgrade. If you experience connection problems while attempting to upgrade this is probably due to a request overload of our server. Just wait a bit and try later. Read more

GNU/Linux Grows Well In Argentina

A government announces a programme to distribute GNU/Linux to schools and it takes a few years to roll out. Read more

Oracle Releases Node.js Tools

Back at its OpenWorld event in 2014, Oracle announced it was working on a Node.js driver for its database products. The resulting code was released last week, as open source code with an Apache 2.0 license. The driver is now available from GitHub, and includes tools for working with JavaScript objects and arrays, and for translating between Oracle and JavaScript data types. It’s designed to handle transactions, and to work with Oracle’s built-in scaling tools. This includes the ability to quickly end transactions in the event of server failures – allowing Node.js applications to quickly failover to another database, without losing user data. Read more

Samsung Galaxy Tab S Pro Might Be Soon Upon Us

Samsung has been pretty silent when it comes to tablets in the last few months. The Korean tech giant rolled out the Galaxy Tab Active at IFA 2014, but that was just a rugged, re-branded version of the Galaxy Tab 4 8.0-inch model. Read more