SELinux wants to touch every file on your system. But is this necessary?
AppArmor takes a different approach and is applied more selectively. It operates on individual applications by limiting their access to essential libraries and files, rather than trying to control the entire system. It ensures applications have only the privileges they need to do their jobs, and no more. This foils privilege escalation, which is usually the primary goal of an attacker, because they require root privileges to do anything significant.
http://www.serverwatch.com –
Created by candtalan 16 years 45 weeks ago – Made popular 16 years 45 weeks ago
Category: Beginner Tags:
Category: Beginner Tags:
- Login to post comments