Hi,
I was doing a bit of catching up on security issues on Linux, and I
noticed on Ubuntu 9.10 that the lcap command that used to be available
about five years ago seems to have disappeared.
lcap and its friends used to allow you to turn off capabilities in the
kernel so once you had made your
on Ubuntu 9.10 that the lcap command that used to be available
about five years ago seems to have disappeared.
lcap and its friends used to allow you to turn off capabilities in the
kernel so once you had made your files immutable with chattr you could
stop people from changing the immutable
that the lcap command that used to be available
about five years ago seems to have disappeared.
lcap and its friends used to allow you to turn off capabilities in the
kernel so once you had made your files immutable with chattr you could
stop people from changing the immutable permissions again (until
I bet that was when the standard security commands in Ubuntu got replaced
with the security commands of SE Linux.
http://en.wikipedia.org/wiki/Security-Enhanced_Linux
I bet your rationale is right, but from a specifics standpoint, wouldn't
that be AppArmor? I know that SE Linux is supported
