Comments on: Explaining Linux Security

By: Tony

Tony — Thu, 13 Aug 2009 13:11:23 +0000

Perfect and to the point! Linux (actually any *nix) security has always been a bit of a dark art. There are documents (policies) that describe how to harden or minimize your attack footprint. Every IT organization needs to conform to some security policy. Examples are NIST 800-53, DISA Unix STIGs, Center for Internet Security, DCID 6/3, SANS LAMP and 20 Critical Security Controls and many more. As Doc mentioned, you shouldn’t need to understand the science in order to use it. Security should be easy—like turning a key or pushing a button—in order to use it.

Security Blanket by Trusted Computer Solutions strives to be that button. The product is feature rich and easy to use. There is a free trial and the development staff has built a how-to blog at http://tcs-security-blanket.blogspot.com/ The product is available for z series computing.

By: Open Source Security » Blog Archive » Explaining Linux Security | Linux Affinity

Mon, 27 Apr 2009 03:47:32 +0000

[...] more here: Open Source Security » Blog Archive » Explaining Linux Security Posted in: [...]

By: Bob

Bob — Wed, 15 Apr 2009 15:41:32 +0000

We all know there is only one use of the abbreviation MAC right? Media Access Control Um, tell me again why security is confusing for the beginner?

By: Doc Shankar

Doc Shankar — Tue, 14 Apr 2009 20:24:45 +0000

The issue still is how can a user use MAC without knowing what it is! This is still the problem with SELinux. A majority of the folks attending the SELinux session last year at LWE said they had SELinux disbaled.

They were looking for some kind of magic from IBM, which i didn’t have!

Imagine if i had to know about electromagnetics, to use a microwave oven!

We need an AppArmor type interface with a powerful engine like SELinux!