RSBAC Handbook Releases
Stable: 1.3.7
for kernels:
- 2.4.36
- 2.6.23.14
Devel 1.4: 1.4.0-rc3
for kernels:
- 2.4.36.9
- 2.6.27.5
Full RSBAC kernels
Lazy of patching ?
Get the already rsbac-patched kernel. Choose your flavor.
Classic kernels
Includes vanilla kernel with the RSBAC patch
- 2.6.23.14
- 2.4.35.3
Enhanced kernels
Kernels including latest security fixes, goodies, and of course PaX+RSBAC
- 2.6.23.15 (20080217)
- 2.4.36 (20080217)
Debian repository
Also works for Ubuntu and other Debian-based distributions, of course
SVN
Cutting edge RSBAC source code, can be unstable sometimes
Events
No events planned
Random Tips
Want to know -on the fly- if the softmode has been enabled ?
Simple with bash:
PROMPT_COMMAND='cat /proc/rsbac-info/active|grep SOFTMODE > /dev/null \
&& mode=$(echo -e "\e[31;01m") \
|| mode=$(echo -e "\e[34;01m")'
PS1='\[\033[32;01m\]\u@$mode\h\[\033[0;m\]:\w\$ '
This prompt will show your hostname in red whenever softmode is enabled, in blue otherwise.
When you edit files with vim, you're losing your RSBAC attributes ?
Vim has the bad habit to unlink and recreate files you are editing by default.
Thus, the files are changing inode (their filesystem identifier) which RSBAC uses to track them. With vim, you can disable this behavior by disabling the creation of backup files:
Add these lines to your /etc/vim/vimrc or /home/youself/.vimrc
set nobackup set nowritebackup set noswapfile
Table of Contents: RSBAC Handbook
Back: Administration Examples