On Fri, 2003-02-07 at 20:35, Stefan van der Eijk wrote: > > [...] > >For paranoid users/admins like me, grsec with pax and some others > >options enabled, a system updated and systrace with good policies > >sounds like 'kiddies' out! :) > > > Maintaining those policies can be very costly. Just wondering what you > are so paranoid about... It's only my own policy.And it's really funny for me.Paranoid is deraadt, i'm realistic.
> >I known that i can put the pieces together manually, and i do in > >my own boxes running Debian GNU/Linux.But at work i don't have choice. > > > That's true... at work it's a $$$ issue. Yes. > How much security is needed is mainly a business descision --> what do > you want to protect (against what) and how much must it cost. > It's up to them to decide how much security is adequate. CSO's are doing it, i'm doing the pratical job only. But the discussion under this subject is: Why not systrace on the next kernel-secure? Can any developer clarify to me? Thanks, -- Gustavo Franco <[EMAIL PROTECTED]>
