|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Integrating securelevel and kauth(9)
From: Daniel Carosone (dan
geek.com.au)
Date: Tue Mar 28 2006 - 14:36:46 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Tue, Mar 28, 2006 at 05:36:41PM +0000, Robert Watson wrote:
> If anyone interested in this discussion is going to be at BSDCan, it would
> be great to have a BOF session on pluggable security frameworks. Having
> done work with a number of them (RSBAC, LSM, FLASK, TrustedBSD MAC
> Framework, kauth), I feel like I have something to say on the topic, but
> also feel the last word hasn't yet been said -- these frameworks all have
> different properties, making some things easier, and some things harder.
Thankyou very much for your insightful and constructive
contributions. You bring perspective not only from practical
implementation and deployment, but also simply of the "bigger picture"
a suitable distance from the tangle of the immediate discussion. This
wisdom is VERY welcome indeed.
I'm quite sure there's interest and value in commonality in these
frameworks; in addition to the pros and cons of each, the complexity
of the landscape weakens the chances of success for any of them.
--
Dan.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (NetBSD)
iD8DBQFEKZ5eEAVxvV4N66cRAiPHAJ0SR12Zs69VOWyHVGpmHXMUuX0cIgCeOCwZ
ORSyZfd1PeRTxKe9Hhv91kY=
=Wbhx
-----END PGP SIGNATURE-----
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]