• Pros
  • Very powerful enhancement of LINUX kernel
  • Nice design, which allows bunch off cool features like transaction, secure_delete, fd hiding…
  • Cool community, still small but efficient and reactive
• Cons
  • The lack of documentations for some modules
  • You need strong knowledge of UNIX system to setup well RSBAC policies
  • For a best enforcement, small changes must be done to distribution (like restoring dynamic fd (/proc, /dev, shm))
  • Their isn't any reference policies for now

Here is a quick'N dirty way to follow rsbac code sources: