-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Christian Seberino wrote: > Can that perhaps give me the benefit of chroot jails > and be EASIER to set up?
I think it can give you the benefit of chroot jails and certainly more flexibility but I'm not really sure it would be easier to set up. In this case you are talking about having to create your own custom access control policy which will require you to become quite familiar with the configuration of SE Linux policy as well as all of the capabilities required by your software (ports to bind to, files/directories to access for read/write, etc). - -- Tracy R Reed http://ultraviolet.org -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org iD8DBQFC5R0D9PIYKZYVAq0RAq2qAJ9cQ5ZguMeaGckV4pAedEs+vUojvQCfbI60 iXW6yqGIBMCPq0zrWYj5Gnc= =jCYG -----END PGP SIGNATURE----- -- [email protected] http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
