Language Selection

English French German Italian Portuguese Spanish

AppArmor: Much Ado About Nothing

Filed under
SUSE

When Novell released its AppArmor security suite under the GPL it created quite a media buzz. But since many people believe that the open source development model leads to better code quality, projects that are derived from a proprietary code base often arouse suspicion. The goal of AppArmor is to limit security breaches to a single process and to prevent compromising the entire system.

The most important question for AppArmor is to ask in which scenarios in can provide a reasonable security improvement. The problem is, there aren't many. The main benefit is for systems where there are multiple services running, so that if your mail server is compromised your Samba shares are still secure. But such things have been implemented using UNIX permission decades ago and this hardly justifies setting up a complex security suite.

Another shortcoming is the inability to effectively limit the harm a process can do.

Full Story.

More in Tux Machines

Sorry, Windows 9 Fans, This Is How Multiple Desktops Should Work – Video

The Linux platform has always taken pride in this cool feature. Having multiple desktops is a great way to increase the productivity and there are numerous means to implement it. Lots of Linux distributions have this option, which is used in various ways. Read more

Can Commercial Linux Gaming Succeed?

Linux games have always been one of the goals of free software. If game developers could only be persuaded to develop for Linux, the daydream goes, the operating system would start to gain serious market share. The last few years have lent hope to the dream, but the progress remains slow -- so slow, in fact, that its realization is starting to look questionable. The first large scale effort to sell Linux games commercially was Loki Software, which ported games like Civilization and Railway Tycoon around the turn of the millennium. It quickly failed financially, leaving Linux gaming largely to minor free-license games like Pysol and Tux Racer, and to efforts to run Windows games using WINE. Read more

Manjaro 0.8.10 Gets Its Tenth Update Pack and New Linux Kernels

The Manjaro 0.8.10 OS, a Linux distribution based on well-tested snapshots of the Arch Linux repositories and 100% compatible with Arch, has received a new update pack that consists of some minor changes and a few new kernels. Read more

ISO/IEC JTC1 Approves ODF 1.2 PAS Ballot

OASIS ODF 1.2, the current version of the Open Document Format standard, was approved by ISO/IEC JTC1 National Bodies after a 3-month Publicly Available Specification (PAS) ballot. The final vote for DIS 26300 was: 17-0 for Parts 1 and 2, and 18-0 for Part 3. Read more