Gentoo Archives: gentoo-hardened

From: Chris PeBenito <pebenito@g.o>
To: atoth@××××××××××.hu
Cc: gentoo-hardened@l.g.o
Subject: Re: [gentoo-hardened] "How hard" is Linux kernel-side hardening?
Date: Sun, 20 Sep 2009 05:40:39
Message-Id: 1253425225.2970.14.camel@defiant.pebenito.net
In Reply to: Re: [gentoo-hardened] "How hard" is Linux kernel-side hardening? by atoth@atoth.sote.hu
On Sat, 2009-09-19 at 19:30 +0200, atoth@××××××××××.hu wrote:
> On Szo, Szeptember 19, 2009 18:13, Marco Venutti wrote:
> > If I've understood correctly GR-Security could > > be the best choice for desktop and RSBAC the > > best choice for server...isn't it? > > I'm not deeply into RSBAC's magic, but I think the best choice is the tool > you are more experienced in.
Its pointless to say one solution is better than another in general terms. The first thing you have to know is your security goals. If you don't know your security goals, you can't determine if you are succeeding by using a particular security system. -- Chris PeBenito <pebenito@g.o> Developer, Hardened Gentoo Linux Public Key: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xE6AF9243 Key fingerprint = B0E6 877A 883F A57A 8E6A CB00 BC8E E42D E6AF 9243