Ask HN: SELinux, opinions?
SELinux was developed primarily by NSA and I remember back in the day I had a distaste for using it just because of that fact. It was a huge code-base with hooks all over the place for various modules, just didnt sit right with security - minimize LOC and exposure. Instead I chose grsecurity and RBAC.
What is the opinion today, is SELinux preferred over alternatives such as Tomoyo?
3 comments
[ 2.8 ms ] story [ 17.8 ms ] threadI've not heard of Tomoyo.
Never heard of Tomoyo... maybe AppArmor