Language Selection

English French German Italian Portuguese Spanish

AppArmor: Much Ado About Nothing

Filed under
SUSE

When Novell released its AppArmor security suite under the GPL it created quite a media buzz. But since many people believe that the open source development model leads to better code quality, projects that are derived from a proprietary code base often arouse suspicion. The goal of AppArmor is to limit security breaches to a single process and to prevent compromising the entire system.

The most important question for AppArmor is to ask in which scenarios in can provide a reasonable security improvement. The problem is, there aren't many. The main benefit is for systems where there are multiple services running, so that if your mail server is compromised your Samba shares are still secure. But such things have been implemented using UNIX permission decades ago and this hardly justifies setting up a complex security suite.

Another shortcoming is the inability to effectively limit the harm a process can do.

Full Story.

More in Tux Machines

Canonical Is Focusing on Ubuntu Desktop Once More

A new Ubuntu Online Summit is now in the planning stages, and it will start in less than week, giving users and developers an insight regarding the upcoming Ubuntu 15.10 version. Read more Also: Ubuntu 15.10 Plans Being Discussed Next Week

A Brief Update On Fwupd For Linux Firmware Updating Of Devices

One of the latest focuses of prolific free software developer Richard Hughes has been on fwupd, an open-source and easy way to update device firmware. Fwupd is part of the initiative to make updating of UEFI/BIOS easily from the Linux desktop and fwupd can be used for updating the firmware of peripheral devices like Richard Hughes' ColorHug device. Read more

VMware Draws on Open Source to Manage Cloud Micro Services

VMware last week released details about two new open source projects that aim to bridge the divide between the company's virtualization software and other vendors' containers. Both projects integrate into VMware's unified platform for the hybrid cloud, allowing the company to create a consistent environment for cloud-native and traditional applications. Project Lightwave and Project Photon could tip sides in the ongoing debate within cloud computing and virtualization markets over running containers on standalone hardware or in virtual machines with virtualization software. Read more

Plasma 5.3