Language Selection

English French German Italian Portuguese Spanish

AppArmor: Much Ado About Nothing

Filed under
SUSE

When Novell released its AppArmor security suite under the GPL it created quite a media buzz. But since many people believe that the open source development model leads to better code quality, projects that are derived from a proprietary code base often arouse suspicion. The goal of AppArmor is to limit security breaches to a single process and to prevent compromising the entire system.

The most important question for AppArmor is to ask in which scenarios in can provide a reasonable security improvement. The problem is, there aren't many. The main benefit is for systems where there are multiple services running, so that if your mail server is compromised your Samba shares are still secure. But such things have been implemented using UNIX permission decades ago and this hardly justifies setting up a complex security suite.

Another shortcoming is the inability to effectively limit the harm a process can do.

Full Story.

More in Tux Machines

Linux Emerging as Alternative to MS Windows

According to industry sources, Linux-based operation systems of Tmax OS and InfraWare are gaining much attention as alternatives to the Microsoft Windows. The latest version of the Linux has been significantly improved in terms of installation and use, providing a user interface similar to that of the Windows and coming with various software tools for documentation, multimedia utilization, etc. In addition, constraints on the Linux in the financial and public sectors are being removed one after another with Internet environments adopting Web standards. Under the circumstances, the software industry is expecting that the utilization of open-source operating systems will spread to the general consumer market as well as the enterprise market. Read more

NethServer 6.8 Linux Server Fights Spam with DNS-Based Blackhole List (DNSBL)

NethServer Community Manager Alessio Fattorini informs Softpedia today about the general availability of the first Beta release of the NethServer 6.8 server-oriented GNU/Linux operating system. Based on the recently released CentOS 6.8 operating system, which in turn builds on the freely distributed sources of the commercial Red Hat Enterprise Linux 6.8 distro, NethServer 6.8 is now in development as the newest long-term support release. Read more

Comparing live version upgrade methods

When I review a distribution I always begin by performing a fresh installation of the operating system. This gives the latest version of the project a chance to stand on its own without complications. However, many of us do not perform fresh installations on our operating systems each time we want to upgrade to the latest release. Some of us, in order to preserve settings or installed packages, prefer to upgrade our existing operating system without starting over from scratch. This week I decided to take five open source operating systems through an upgrade process from their penultimate release to their latest version. Read more

Porteus Kiosk 4.0 Modular Linux Web Kiosk Released, Drops Chrome 32-bit Support

Porteus Solutions' Tomasz Jokiel announced on May 30, 2016, the release of the final Porteus Kiosk 4.0.0 Web Kiosk operating system based on the latest GNU/Linux technologies and open-source software. Porteus Kiosk 4.0.0 comes three months after the release of the last maintenance build in the Porteus Kiosk 3.x series, introducing numerous new features and improvements. But first, let's take a quick look under the hood, as the OS is now powered by Linux kernel 4.4.11 LTS (Long Term Support), and it's based on the Mozilla Firefox 45.1.1 ESR and Google Chrome 50.0.2661.102 web browsers. Read more