[rsbac] Against LSM
Amon Ott
ao at rsbac.org
Thu Sep 6 08:52:17 CEST 2007
On Wednesday 05 September 2007 03:59, shahbaz khan wrote:
> I would suggest you to read this article. I think it can be easily
> used with RSBAC.
>
> -----> http://james-morris.livejournal.com/11010.html
RSBAC network access control works on connection (TCP/UDP/ etc.)
level, not on IP level. However, we could probably use netfilter as
an alternative to label connections - if we find a way to protect the
netfilter rules and labelling with full access control. Currently, we
only have SCD firewall for this, which would not be sufficient.
Amon.
--
http://www.rsbac.org - GnuPG: 2048g/5DEAAA30 2002-10-22
More information about the rsbac
mailing list