From selinux  Wed Aug 01 12:10:44 2007
From: Steve G <linux_4ever () yahoo ! com>
Date: Wed, 01 Aug 2007 12:10:44 +0000
To: selinux
Subject: Re: selinux rsbac and grsecurity internels
Message-Id: <329919.34996.qm () web51507 ! mail ! re2 ! yahoo ! com>
X-MARC-Message: https://marc.info/?l=selinux&m=118597053605063


>6.Is there any good logging facility apart from regular denial? I have
>heard rsbac and grsecurity has better logging facilities.

Yes, there is a complete audit system unrelated to selinux that has been in the
upstream kernel since 2.6.6. Its been through 7 CAPP evals and 2 LSPP evals. The
linux-audit mail list might be a better place to ask questions about it, though.

-Steve Grubb


      ____________________________________________________________________________________
Fussy? Opinionated? Impossible to please? Perfect.  Join Yahoo!'s user panel and lay it on us. http://surveylink.yahoo.com/gmrs/yahoo_panel_invite.asp?a=7 


--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with
the words "unsubscribe selinux" without quotes as the message.