Which module is "best"?

Previous message: greg: "Fw:linux-security-module,spice girls' vocal concert"
Next in thread: Russell Coker: "Re: Which module is &quot;best&quot;?"
Reply: Russell Coker: "Re: Which module is &quot;best&quot;?"
Reply: Crispin Cowan: "Re: Which module is &quot;best&quot;?"
Reply: Chris Wright: "Re: Which module is &quot;best&quot;?"
Reply: Pete Loscocco: "Re: Which module is &quot;best&quot;?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

dcarreraat_private

Hello,

I want to try to learn one of the LSM modules, but I have little 
clue as to which one I should pick.

I've read a couple of papers explaining SELinux and its model of MAC.    
I was very impressed and I'm leaning towards this one.  However, I'm
concerned that it's only a research project.  Is SELinux meant for
production systems? or is it just a proof of concept?
In other words, is SELinux a good option?

As for the others (DTE, Openwall, LIDS, POSIX capabilities), are they
comparable in security to SELinux?

I am very interested in bringing the security of my Linux system 
beyond the traditional super-user model.  If I only have time to learn 
one ofthese systems, which one should I go for?

Is it possible that someone could give me a brief run-down of what
sets them appart?  I'm stuggling to figure out what these systems do.

Thanks for the help,

-- 
Daniel Carrera
Graduate Teaching Assistant.  Math Dept.
University of Maryland.  (301) 405-5137
_______________________________________________
linux-security-module mailing list
linux-security-moduleat_private
http://mail.wirex.com/mailman/listinfo/linux-security-module