===== Selecting a Security Model Combination =====
//Note: Please see the [[:documentation:rsbac_handbook:security_models|Security Modules]] page for more information about the different modules and the model they provide//


==== Let's start by reviewing the module table ====

In the following table, you can find a summary of every available module.

The //Code Name// is the name RSBAC uses to identify that module.

The //Use// column helps out if you are not sure of what modules to use:
  * Always: always turn it on.
  * Likely: you most probably want this module.
  * Optional: it is up to you, you may not need this module.
  * Unlikely: this module is rarely used.

The //Short description// column links to a description of the module in the current page.

The //In depth description// column links to a section completely dedicated to this module, explaining the functionality and usage in details.

^Module Name^Code name^Use^Short description^In depth description^
|Authenticated User|AUTH|Always|[[:documentation:rsbac_handbook:security_models#authenticated_user_auth|Authenticate Users]]|[[:documentation:rsbac_handbook:security_models:auth|Yes]]|
|Role Compatibility|RC|Likely|[[:documentation:rsbac_handbook:security_models#role_compatibility_rc|Role based access control]]|[[:documentation:rsbac_handbook:security_models:rc|Yes]]|
|Jail|JAIL|Likely|[[:documentation:rsbac_handbook:security_models#jail|Encapsulation of individual processes]]|[[:documentation:rsbac_handbook:security_models:jail|Yes]]|
|Linux Capacities|CAP|Likely|[[:documentation:rsbac_handbook:security_models#linux_capacities_cap|Manages Linux Capacities]]|[[:documentation:rsbac_handbook:security_models:cap|Yes]]|
|Pageexec|PAX|Likely|[[:documentation:rsbac_handbook:security_models#pax_support_pax|Prevention against unwanted code execution]]|No|
|Dazuko|DAZ|Optional|[[:documentation:rsbac_handbook:security_models#dazuko_daz|On-access anti-virus scanner]]|[[:documentation:rsbac_handbook:security_models:daz|Yes]]|
|User Space Decision Facility (from 1.4.8)|UDF|Optional|[[:documentation:rsbac_handbook:security_models#user_space_decision_facility_udf|User space decisions, e.g. malware scanning]]|No|
|File Flags|FF|Optional|[[:documentation:rsbac_handbook:security_models#file_flags_ff|Set special access control flags per file/dir]]|[[:documentation:rsbac_handbook:security_models:ff|Yes]]|
|Linux Resources|RES|Optional|[[:documentation:rsbac_handbook:security_models#linux_resources_res|Manages Linux Resources]]|No|
|User Management|UM|Optional|[[:documentation:rsbac_handbook:security_models#user_management_um|Manage system Users in kernel]]|[[:documentation:rsbac_handbook:security_models:um|Yes]]|
|Access Control Lists|ACL|Optional|[[:documentation:rsbac_handbook:security_models#access_control_lists_acl|Extensive Access Control Lists]]|[[:documentation:rsbac_handbook:security_models:acl|Yes]]|
|Privacy Model (removed in 1.4.8)|PM|Optional|[[:documentation:rsbac_handbook:security_models#simone_fischer-huebner_s_privacy_model_pm|Controls data privacy in conformance to EU laws]]|No|
|Mandatory Access Control|MAC|Unlikely|[[:documentation:rsbac_handbook:security_models#mandatory_access_control_mac|Multi Layer Access Control]]|[[:documentation:rsbac_handbook:security_models:mac|Yes]]|



==== Selecting the modules You need ====

Alright, the above table pretty much sums up what modules are offered to you, what they do, and how likely it is that you want to use them. Quite a few of them are very case specific however. When you know them all in details, you will be able to choose by yourself what fits your requirements.

To get your started, here are a few safe combinations that are commonly used:

  * Special cases:
    * PAX: If your kernel is PaX-enabled, please do use this module. If your kernel does not support PaX, then there is no need to enable it!\\ The use of PaX-enabled kernels is however recommended.
    * DAZ/UDF: If you wish to use anti-virus scanning (for example, you could be serving Samba shares to Windows(r) clients with Windows(r) files), please use this module. Note that today, most Linux systems do not run any anti-virus solution.
    * UM: In kernel user management has quite a few advantages, and you will probably consider to use it for a single reason:\\ with UM, it is possible for RSBAC to __know__ that a process authenticated you, and let this process switch to your user id. Without UM, you have to __trust__ that the processes have authenticated correctly and __trust__ them to switch to your user id.

\\ 

//Note: the modules in brackets are left to your consideration. Enabling them won't make things harder.//

^Standard server|AUTH,RC,JAIL,CAP,[RES]|
^Standard desktop|AUTH,RC,JAIL,[CAP]|
^Minimum desktop|AUTH,FF,JAIL,[CAP]|

\\ 

The Minimum desktop set is the easiest to deal with. You will only have to setup AUTH (means, what application can switch to what user id) to have a usable system. You can then experiment with FF, to set attributes to directories paths, and with JAIL, by Jailing for example your web browser and mail client.

The Standard desktop raises the level, with RC. You will have to understand this model and set it system-wide before your system becomes usable. However, this is far more powerful and after a while, it will be easier for you to secure your system using RC than with FF or ACL modules. Like with the minimum desktop, you can jail your web browser or other sensitive applications with the JAIL module.

Finally, the standard server comes with a similar setup. Jail your services, setup RC system wide, and you may want to add a few more modules, like DAZ for the virus scanning, RES to control system resources etc.

In every case, make sure that you understand every module you are using. Test them (you can use the [[http://livecd.rsbac.org|Live CD]] to do this without destroying your system), until you feel comfortable with them.

\\ 
----
**Table of Contents:** [[documentation:rsbac_handbook|RSBAC Handbook]]\\
**Previous:** [[Logging]]\\ 
**Next:** [[]]