[rsbac] WorkStation kernel
Andrea Pasquinucci
cesare at ucci.it
Tue Sep 20 15:00:04 CEST 2005
Hi all,
I have uploaded to http://fedora.rsbac.mprivacy-update.de/4_ws/ a
rpm of a compiled kernel + rsbac_admin tools and a rpm for configuration
scripts et al, for a very simple workstation setup running Fedora Core 4.
There is not MAC protection but only DAZ, RES, PAX and FF modules. My
aim is to protect normal workstation users from
- buffer overflows and similar (PaX)
- exhaustion of resources (RES)
- virus, worms and similar (DAZ + clamd)
Each user can add simple MAC features using the FF module.
There are major constraints in this setup: it must be compatible with
the distribution and must require _no_ user intervention to setup, only
automatic tools.
NOTICE: this is really VERY PRELIMINARY (for example I haven't yet
understood why flash doesn't work anymore in firefox, nor added any RES
protection yet).
TEST at your own risk, but if anyone is interested, please help.
Andrea
PS. more info in the README and INSTALL files there
--
Andrea Pasquinucci cesare at ucci.it
PGP key: http://www.ucci.it/ucci_pub_key.asc
fingerprint = 569B 37F6 45A4 1A17 E06F CCBB CB51 2983 6494 0DA2
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://rsbac.dyndns.org/pipermail/rsbac/attachments/20050920/905b78b4/attachment.bin
More information about the rsbac
mailing list