On jeu., 2016-01-21 at 12:20 -0800, Kevin Gallagher wrote:
> This also means that the gradm utility (a package recommended by
> linux-grsec-base, also in the repos as 'gradm2') is unusable, since the
> /dev/grsec device is not exposed:
>
> # gradm -P admin
> Could not open /dev/grs
On lun., 2016-02-01 at 07:35 -0800, Kevin Gallagher wrote:
> Compared to AppArmor, which one trains on specific processes,
> Grsecurity's RBAC is the first to provide full system learning that can
> automatically generate least-privilege policies covering the entire
> system, without manual configu
Compared to AppArmor, which one trains on specific processes,
Grsecurity's RBAC is the first to provide full system learning that can
automatically generate least-privilege policies covering the entire
system, without manual configuration.
If one is already familiar with writing AppArmor policies,
Yves,
I will concede that the various access control systems are "more or
less" equivalent, and I'm just really enthusiastic about grsec's, and
the possibility of making it available to more people in Debian.
As a general matter, I regard the grsecurity RBAC as more comprehensive
and easier to ad
control: tag -1 wishlist
On jeu., 2016-01-21 at 12:20 -0800, Kevin Gallagher wrote:
> Been playing with the grsec kernel that recently landed in sid (linux-
> image-4.3.0-1-grsec-amd64).
Cool, thanks for testing.
> One issue I discovered is that the RBAC is
> disabled in the kernel configuratio
Package: linux-grsec-base
Version: 5
Severity: normal
Tags: newcomer
Dear Maintainer,
Been playing with the grsec kernel that recently landed in sid (linux-
image-4.3.0-1-grsec-amd64). One issue I discovered is that the RBAC is
disabled in the kernel configuration.
This also means that the gradm
6 matches
Mail list logo
