begin quoting Tracy R Reed as of Tue, Nov 08, 2005 at 02:25:25PM -0800: > Stewart Stremler wrote: > > Er, that (A) is not true and (B) doesn't completely contradict what I said. > > You're making "fairly" weasel about *far* to much. > > I think we'll have to agree to disagree on this one. On what part? A, B, or weaseling?
MAC, DAC, ACLs, CLs, and ACMs are all straightforward. RBAC is trickier. > > and you say that it's *straightforward*?) > > Yep. I think anyone who can configure a Linux based firewall can also > configure an SE Linux security policy. Er, configuring a firewall is easy. Allow port 22 in. Disallow everything else. Far different from SELinux. :) -Stewart "One you have ssh, what more do you need?" Stremler -- [email protected] http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
