Skip to main content
Unix & Linux

Questions tagged [lsm]

Ask Question

Linux Security Modules (LSM) is a framework that allows the Linux kernel to support a variety of computer security models while avoiding favoritism toward any single security implementation.

19 questions
Newest Active Bountied Unanswered
0 votes
0 answers
56 views

I have a binary program that creates an empty folder in the HOME directory everytime it starts up. I don't like that and want to use the SMACK mechanism to stop it from doing that. My idea is to label ...
Xinyu Wang's user avatar
  • 1
0 votes
1 answer
238 views

I want to restrict access to files in /proc as much as possible using SELinux. When I try to chcon a directory in /proc, it fails: $ chcon -t staff_proc_t /proc/acpi chcon: failed to change context of ...
jiwopene's user avatar
  • 1,101
1 vote
1 answer
1k views

I'm interested to write a kernel program that can have all possible controls on syscalls, such as intersection, filtering, and make changes in their arguments. I look up for two goals: read system ...
Mostafa Sarmad's user avatar
  • 11
3 votes
1 answer
534 views

I know this is kind of an odd question. An IDS/IPS basically autonomously recognizes and optionally prevents intrusions. And while SELinux and AppArmor seem to be trying to do the same, they are never ...
Nephilim's user avatar
  • 49
0 votes
0 answers
57 views

I want to intercept event and then modify output. So main question not about how to get notification about event, but how to modify output. Example Content of file.txt Current user is When some ...
Sonique's user avatar
  • 101
1 vote
1 answer
1k views

I am going through some primers on LSM implementations so eventually I am digging a bit into AppArmor and SELinux. I am aware of this discussion but this does not make very clear one question I am ...
pkaramol's user avatar
  • 3,109
14 votes
1 answer
19k views

What is the core [or kernel level] difference of SELinux and Apparmor?
arif's user avatar
  • 1,599
1 vote
1 answer
865 views

I am having trouble seeing the utility or use of the LSM attribute/caps implementations. I've put together a pseudo code snippet of sorts to try to express my concern and question. It's modeled ...
user avatar

15 30 50 per page
1
2