> I'm considering implementing SELinux for truly paranoid protection. I'm > a RACF security admin as well as a z/OS sysprog. Yes, I __own__ the z/OS > system.
While you're at it, write some tools for managing SELinux policies. Much like RACF, the problem is not implementing SELinux, but actually getting it to behave in a usable manner. A set of useful management tools for such a beast would make you a serious security god in the Unix world -- I bet just porting all the stuff you wrote ages ago to manage RACF would be a great start. -- db ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390
