Language Selection

English French German Italian Portuguese Spanish

AppArmor: Much Ado About Nothing

Filed under
SUSE

When Novell released its AppArmor security suite under the GPL it created quite a media buzz. But since many people believe that the open source development model leads to better code quality, projects that are derived from a proprietary code base often arouse suspicion. The goal of AppArmor is to limit security breaches to a single process and to prevent compromising the entire system.

The most important question for AppArmor is to ask in which scenarios in can provide a reasonable security improvement. The problem is, there aren't many. The main benefit is for systems where there are multiple services running, so that if your mail server is compromised your Samba shares are still secure. But such things have been implemented using UNIX permission decades ago and this hardly justifies setting up a complex security suite.

Another shortcoming is the inability to effectively limit the harm a process can do.

Full Story.

More in Tux Machines

Today in Techrights

Open Source Software: Sailing Into Friendlier Seas

Open source software is now a force drawing enterprises and developers like a magnet. The factors pulling adopters into the open source fold are changing, though. Also changing are the attitudes of software developers and corporate leaders about the viability and adaptability of open source. Open source software is increasingly important within the corporation, as a recent survey conducted by Black Duck Software and North Bridge Venture Partners found. Developers and corporate leaders now view open source software as a strategic advantage that can help companies create more secure products with better features and functionality. This helps adopters beat the competition. Read more

Linux at 23, Desktop Feedback, and GIMP 2.8.14 Released

The top story tonight is the releases of GIMP 2.8.12 and 2.8.14. Linux celebrated 23 years yesterday and the community had a bit to say about "the desktop." And finally tonight we have a couple of gaming announcements and Bruce Byfield on the KDE Visual Design Group. Read more

Tux Paint: Doing FOSS Right

Apparently, I’m not alone in thinking highly of the software, if this page of testimonials is any indication. In fact, the publication “This Old Schoolhouse” recently echoed many other reviews in their article in the June 2012 edition. In the article, Andy Harris, the Tech Homeschooler, wrote, “Tux Paint is just about the most kid-friendly program I’ve ever seen. It’s designed so the adult can set it up, and even very young children can enjoy it thoroughly. It also has sophisticated enough features for siblings and parents to enjoy.” Tux Paint is a project that does FOSS right: A wide-ranging team labors for the good of the program and consistently puts out quality software without fanfare or self-congratulation. The proof, as they say, is in the software itself: high-quality software which enjoys a high degree of acceptance with teachers and parents, to say nothing of holding the interest – and unlocking the creativity – of children. Read more