On 16.11.2012 02:16, Subhadip Dutta wrote:
Hi,
Someone asked me what extra functionality OSSEC is going to give over
SELinux that one will install OSSEC in Linux systems and disable the
security enabled features of SELinux. I, being new to OSSEC, could
not
answer this. Can someone kindly answer this for me?
SELinux enforces a MAC (mandatory access control) model of security,
where even root cannot do certain things. OSSEC doesn't do anything like
this--it is a host-based IDS designed to detect certain attacks. So, the
two really don't have much to do with one another besides being security
software.
