Language Selection

English French German Italian Portuguese Spanish

AppArmor: Much Ado About Nothing

Filed under
SUSE

When Novell released its AppArmor security suite under the GPL it created quite a media buzz. But since many people believe that the open source development model leads to better code quality, projects that are derived from a proprietary code base often arouse suspicion. The goal of AppArmor is to limit security breaches to a single process and to prevent compromising the entire system.

The most important question for AppArmor is to ask in which scenarios in can provide a reasonable security improvement. The problem is, there aren't many. The main benefit is for systems where there are multiple services running, so that if your mail server is compromised your Samba shares are still secure. But such things have been implemented using UNIX permission decades ago and this hardly justifies setting up a complex security suite.

Another shortcoming is the inability to effectively limit the harm a process can do.

Full Story.

More in Tux Machines

Laptop Power, Boot Times With Ubuntu 17.04

I haven't posted any mobile/laptop Linux benchmarks recently since my newest laptop at the moment is still based on Broadwell with having no Kabylake laptop at the moment. But for those curious about any power/boot changes for mature Intel Broadwell hardware on Linux, hopefully you find these numbers today interesting. Read more

Open-source EdgeX Foundry seeks to standardize Internet of Things

Security is the Internet of Things' (IoT) Achilles heel. One reason that's so is there is a lack of common IoT development standards. The Linux Foundation, along with 50 companies, is addressing this by building a common open-framework for IoT edge computing and an ecosystem of interoperable components under a new open-source consortium: The EdgeX Foundry. Read more

Samsung’s Tizen-based Breeze-Free Air Conditioners are just the thing for summer

Samsung has got many products that are powered by the Linux based Tizen Operating System, with a particularly strong focus on the Smart Home and wearable tech. Their breeze-free air conditioners are popular, especially with summer fast approaching, and consists of the wall-hanging breeze-free air conditioners and also the stand-type breeze conditioners that joined the range last year. Read more

Red Hat Rolls Out Version 4.1 of KVM Platform

Red Hat has just launched Red Hat Virtualization 4.1. The company says that this product is "the latest release of the company's Kernel-based Virtual Machine (KVM)-powered enterprise virtualization platform." The goal, the company says is to provide "an open source infrastructure and centralized management solution for virtualized servers and workstations." Red Hat describes some of the platform's upgrades: Read more