On 9/22/07, Douglas A. Tutty <[EMAIL PROTECTED]> wrote: > Linux has SELinux in its 2.6 kernel and debian has gone ahead and > compiled SELinux into the libraries, although the SELinux policies > aren't ready on debian yet.
rhetorical question: why aren't the policies ready? the problem with security by policy is that the policy is always wrong. exercise for the reader: find somebody using SELinux. ask them to describe their policy over the phone. then repeat it back to them. did you get it right?
